kienbui1995/docker-containerization
skills/docker-containerization/SKILL.md
Use when creating Dockerfiles, docker-compose configs, optimizing container images, or setting up containerized development environments
development
Updated Apr 23, 2026
$ install --global
skillsauthnpx skillsauth add kienbui1995/magic-powers docker-containerizationInstall this skill globally with one command. Works with Claude Code, Cursor, and Windsurf.
Security Scan Results
3 of 9 scanners reported clean
Some scanners were skipped, did not run, or reported a non-clean status. Review each row below.
3
Scanners Passed
9
Scanners in report
Clean
TrivyContainer and dependency vulnerability scanner
95%
Clean
SemgrepStatic code analysis for vulnerabilities
95%
Clean
mcp-scan (Snyk)Model Context Protocol security validation
95%
Skipped
Snyk (dep)Open source security scanning
50%
Skipped
Socket.devSupply chain security analysis
50%
Skipped
VirusTotalMulti-engine malware detection
50%
Skipped
CrowdStrikeAdvanced threat intelligence
50%
Skipped
OSV-ScannerOpen Source Vulnerability database check
50%
Skipped
OWASP Dep-Check
50%
Last scanned: Apr 24, 2026, 12:55 AM33.8s1 file scanned
SKILL.md
- name:
- docker-containerization
- description:
- Use when creating Dockerfiles, docker-compose configs, optimizing container images, or setting up containerized development environments
Docker & Containerization
Overview
Containers should be small, secure, and reproducible. A good Dockerfile builds fast, runs lean, and has no secrets baked in.
When to Use
- Creating Dockerfiles for new projects
- Optimizing image size or build time
- Setting up docker-compose for local development
- Reviewing container security
Multi-Stage Build Pattern
# Stage 1: Build
FROM node:20-alpine AS builder
WORKDIR /app
COPY package*.json ./
RUN npm ci --only=production
COPY . .
RUN npm run build
# Stage 2: Runtime
FROM node:20-alpine
WORKDIR /app
COPY --from=builder /app/dist ./dist
COPY --from=builder /app/node_modules ./node_modules
USER node
EXPOSE 3000
CMD ["node", "dist/index.js"]
Best Practices
- Small base images — use
alpineordistroless, notubuntu - Multi-stage builds — build deps don't belong in runtime image
- Layer ordering — copy
package.jsonbefore source code (cache deps layer) - Non-root user — always
USER nodeorUSER appuser - No secrets in image — use env vars, mounted secrets, or build args (not COPY)
- .dockerignore — exclude
node_modules,.git,.env, test files - Pin versions —
node:20.11-alpinenotnode:latest - Health checks —
HEALTHCHECK CMD curl -f http://localhost:3000/health - One process per container — don't run supervisor/multiple services
Image Size Targets
| Stack | Target Size | |-------|-------------| | Node.js | <150MB | | Python | <200MB | | Go | <20MB (static binary) | | Java | <200MB (JRE slim) |
Docker Compose for Dev
services:
app:
build: .
ports: ["3000:3000"]
volumes: ["./src:/app/src"] # hot reload
env_file: .env
depends_on:
db: { condition: service_healthy }
db:
image: postgres:16-alpine
environment:
POSTGRES_DB: app
POSTGRES_PASSWORD: dev
healthcheck:
test: ["CMD-SHELL", "pg_isready"]
interval: 5s
Security Checklist
- [ ] Non-root user
- [ ] No secrets in image layers
- [ ] Pinned base image versions
- [ ] Minimal packages installed (no curl/wget in prod unless needed)
- [ ] Read-only filesystem where possible
- [ ] Scan with
docker scoutortrivy
Integration
- magic-powers:ci-cd-pipeline — build and push images in CI
- magic-powers:infrastructure-review — review container orchestration
- magic-powers:environment-setup — containerized dev environments
Related Skills
kienbui1995/xr-interface-design
content-media
VerifiedTrustedCommunity
Use when designing for XR (AR/VR/MR), choosing interaction modes, or adapting 2D UI patterns for spatial computing
SKILL.mdUpdated Apr 24, 2026
kienbui1995/writing-skills
testing
VerifiedTrustedCommunity
Use when creating new skills, editing existing skills, or verifying skills work before deployment
SKILL.mdUpdated Apr 24, 2026
kienbui1995/writing-plans
development
VerifiedTrustedCommunity
Use when you have a spec or requirements for a multi-step task, before touching code
SKILL.mdUpdated Apr 24, 2026
kienbui1995/workflow-templates
development
VerifiedTrustedCommunity
Use when executing a structured workflow — select and run a feature, bugfix, refactor, research, or incident template with correct agent and model assignments per phase.
SKILL.mdUpdated Apr 24, 2026