docker-hadolint
$
npx mdskill add TheBeardedBearSAS/claude-craft/docker-hadolintValidates Dockerfiles using Hadolint and Docker best practices
- Checks Dockerfiles for security, efficiency, and compliance issues
- Uses pinned Hadolint v2.12.0 and Docker Engine 29.4.3
- Applies 2026 best practices like BuildKit cache mounts and secrets
- Returns actionable linting results and build optimization suggestions
SKILL.md
.github/skills/docker-hadolintView on GitHub ↗
---
name: docker-hadolint
description: Docker & Hadolint validation (2026). Use when working with Docker, containers, or validating Dockerfiles.
---
# Docker & Hadolint (2026)
## Versions (avril 2026)
- **Docker Engine** : 29.4.3 (patch sécurité, mai 2026)
Source : https://www.docker.com/blog/docker-engine-version-29/
- **Docker Compose** : Spec v5.0.0 "Mont Blanc" (champ `version:` obsolète depuis v2.40+)
Source : https://www.compose-spec.io/
- **Hadolint** : v2.12.0 (version stable pinnée)
Source : https://github.com/hadolint/hadolint/releases/tag/v2.12.0
## Validation Hadolint
**TOUJOURS utiliser la version pinnée `v2.12.0`** (jamais `latest` ou sans tag).
```bash
# Validation Dockerfile
docker run --rm -i hadolint/hadolint:v2.12.0 < Dockerfile
# Validation via Makefile (recommandé)
make hadolint
```
## Best Practices 2026
### BuildKit Cache Mounts
```dockerfile
RUN --mount=type=cache,target=/var/cache/apk \
apk add --no-cache postgresql-dev
```
**Bénéfice** : Réduction temps build de 40-60%
**Source** : https://docs.docker.com/build/cache/
### BuildKit Secrets
```dockerfile
RUN --mount=type=secret,id=composer_token \
COMPOSER_AUTH="$(cat /run/secrets/composer_token)" composer install
```
**Bénéfice** : Aucun secret dans l'image finale
**Source** : https://docs.docker.com/build/building/secrets/
### Multi-Stage Builds
```dockerfile
FROM php:8.4-fpm-alpine AS builder
RUN composer install
FROM php:8.4-fpm-alpine AS runtime
COPY --from=builder /app /app
```
**Bénéfice** : Réduction taille image de 60-97%
**Source** : https://docs.docker.com/build/building/multi-stage/
### Images Distroless
```dockerfile
FROM gcr.io/distroless/php8.2-fpm
COPY --from=builder /app /app
```
**Bénéfice** : Surface d'attaque minimale, CVE réduites de 90%
**Source** : https://github.com/GoogleContainerTools/distroless
## Documentation Complète
Voir `@.claude/references/symfony/docker.md` pour architecture complète et exemples.
More from TheBeardedBearSAS/claude-craft
- adapter-developmentErstellen Sie eine Paperclip-Extension — ein Plugin via @paperclipai/plugin-sdk oder einen Built-in-Adapter unter packages/adapters. Verwenden Sie dies beim Hinzufügen von AI-Runtimes oder Feature-Plugins.
- aggregatesRègle 05 : Aggregates et Aggregate Roots. Use when implementing DDD patterns.
- api-gatewayAPI Gateway patterns (Kong, Traefik, AWS API Gateway) — rate limiting, auth, routing, versioning. Use when implementing API gateway, reverse proxy, or API management.
- architecture-clean-dddArchitecture Clean + DDD + Hexagonal - Atoll Tourisme. Use when designing architecture or reviewing code structure.
- architecture-paperclipPaperclip-Two-Layer-Architektur (Control-Plane + Adapter). Verwenden Sie dies beim Entwerfen oder Reviewen von Paperclip-Modul-/Adapter-Grenzen.
- asyncArchitecture async-first avec messaging et queues (Symfony Messenger, Laravel Queue, Ecotone). Use when working with async processing, queues, workers, background jobs.
- atomic-tasksPattern GSD (Get Shit Done) - découper en tâches atomiques avec contextes subagent frais pour combattre le context rot. Use when planning complex work or working past 50% context usage.
- coding-standards-tsPaperclip-TypeScript-Coding-Standards — Strict-Modus, Kebab-Files, kein any, strukturierte Logs. Verwenden Sie dies beim Schreiben oder Reviewen von Paperclip-TS-Code.
- cqrsCQRS - Command Query Responsibility Segregation. Use when implementing DDD patterns, separating read/write models, event sourcing, or building scalable architectures with heterogeneous performance requirements.
- ddd-patternsPatterns DDD - Atoll Tourisme. Use when implementing DDD patterns.