mirror of
https://github.com/mukul975/Anthropic-Cybersecurity-Skills.git
synced 2026-07-16 12:45:17 +03:00
17 lines
626 B
Markdown
17 lines
626 B
Markdown
# Standards - Distroless Container Images
|
|
|
|
## NIST SP 800-190
|
|
- Section 3.1.1: Minimize image content to reduce attack surface
|
|
- Section 4.1.1: Use minimal base images for container builds
|
|
|
|
## CIS Docker Benchmark v1.6
|
|
- 4.1: Ensure a user for the container has been created
|
|
- 4.2: Ensure containers use trusted base images
|
|
- 4.6: Ensure HEALTHCHECK instructions have been added
|
|
- 4.9: Ensure COPY is used instead of ADD
|
|
|
|
## OWASP Docker Security
|
|
- D2: Patch Management Strategies (fewer packages = fewer patches)
|
|
- D3: Network Segmentation and Firewalling
|
|
- D4: Secure Defaults and Hardening (no shell = hardened by default)
|