Docker

Security

By default, the docker daemon will modify the firewall settings on the host machine. This is undesirable if the machine isn’t behind another, separate non-host firewall.

In general Docker workloads should be run within Kubernetes.

Linting

Hadolint