ab-aswini/.agent-os/skills/docker
.agent-os/skills/docker/SKILL.md
# Docker Skill > Loaded by: DevOps Division agents | Version: 1.0 ## Dockerfile Pattern ```dockerfile # Multi-stage build FROM node:20-alpine AS builder WORKDIR /app COPY package*.json ./ RUN npm ci --only=production COPY . . RUN npm run build FROM node:20-alpine AS runtime WORKDIR /app RUN addgroup -g 1001 appgroup && adduser -u 1001 -G appgroup -s /bin/sh -D appuser COPY --from=builder /app/dist ./dist COPY --from=builder /app/node_modules ./node_modules USER appuser EXPOSE 3000 HEALTHCHEC
$ install --global
skillsauthnpx skillsauth add ab-aswini/agent-kit-p1 .agent-os/skills/dockerInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Error
VirusTotalMulti-engine malware detection
70%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Mar 26, 2026, 11:45 AM42.7s1 file scanned
SKILL.md
Docker Skill
Loaded by: DevOps Division agents | Version: 1.0
Dockerfile Pattern
# Multi-stage build
FROM node:20-alpine AS builder
WORKDIR /app
COPY package*.json ./
RUN npm ci --only=production
COPY . .
RUN npm run build
FROM node:20-alpine AS runtime
WORKDIR /app
RUN addgroup -g 1001 appgroup && adduser -u 1001 -G appgroup -s /bin/sh -D appuser
COPY --from=builder /app/dist ./dist
COPY --from=builder /app/node_modules ./node_modules
USER appuser
EXPOSE 3000
HEALTHCHECK --interval=30s --timeout=3s CMD wget -q --spider http://localhost:3000/health || exit 1
CMD ["node", "dist/server.js"]
Anti-Patterns
- Do NOT run containers as root
- Do NOT include dev dependencies in production images
- Do NOT hardcode secrets (use env vars or secrets management)
- Do NOT use
latesttag in production - Do NOT skip health checks
Checklist
- [ ] Multi-stage build used
- [ ] Non-root user configured
- [ ] Health check defined
- [ ] .dockerignore is comprehensive
- [ ] No secrets in image; image size is optimized
Related Skills
ab-aswini/webapp-testing
development
VerifiedTrustedCommunity
Web application testing principles. E2E, Playwright, deep audit strategies.
2SKILL.mdUpdated Mar 26, 2026
ab-aswini/web-design-guidelines
development
VerifiedTrustedCommunity
Review UI code for Web Interface Guidelines compliance. Use when asked to "review my UI", "check accessibility", "audit design", "review UX", or "check my site against best practices".
2SKILL.mdUpdated Mar 26, 2026
ab-aswini/vulnerability-scanner
testing
VerifiedTrustedCommunity
Advanced vulnerability analysis principles. OWASP 2025, Supply Chain Security, attack surface mapping, risk prioritization.
2SKILL.mdUpdated Mar 26, 2026
ab-aswini/.agent-os/skills/testing
development
VerifiedTrustedCommunity
# Testing Skill > Loaded by: QA Division agents | Version: 1.0 ## Test Pyramid ``` / E2E \ <- Few, slow, expensive / Integr. \ <- Some, moderate / Unit \ <- Many, fast, cheap ``` ## Unit Test Pattern (Arrange, Act, Assert) ```python def test_user_creation(): # Arrange user_data = {"name": "Alice", "email": "[email protected]"} # Act user = UserService.create(user_data) # Assert assert user.name == "Alice" assert user.id is
2SKILL.mdUpdated Mar 26, 2026