Container, Kubernetes, and network security review covering image hardening, RBAC, network policies, and supply chain integrity.
This audit covers 26 checks across Docker image security (base image selection, layer minimization, non-root users), Kubernetes RBAC and pod security policies, network policy configuration, secrets management in containerized environments, and container supply chain integrity. Designed for teams moving vibe-coded projects into production infrastructure that must meet enterprise security standards.
26
Total Checks
3
Delivery Formats
4
Categories
5
Versions
Included
Never included
Quality hardening: enumeration language, numeric thresholds, cross-references, negative guardrails, measurement-on-pass, and quoting patterns across all 26 checks. Manifest tolerances tightened to exact.
2026-04-02
Added chunked format for browser-based tools
2026-03-01
Improved Step 3: paste URL is now primary submission method
2026-03-01
Hardened curl commands with -sS -L flags for redirect following and error visibility. Added response validation guidance to Step 3.
2026-02-23
Initial release
2026-02-01
Picked by pack overlap with this audit.
Data handling assessment across the AI processing pipeline, covering storage, retention, PII protection, and user control over third-party model data sharing.
Safety assessment against prompt injection attacks, identifying vulnerabilities where untrusted user input might cause the AI to ignore instructions or exfiltrate data.
Comprehensive security audit for REST and GraphQL APIs, covering authentication, authorization, input validation, and protection against OWASP API Top 10 threats.
Production-ready authentication assessment covering session management, login flow security, password handling, and OAuth integrations.
Authorization layer assessment covering access control, resource authorization, API permissions, and admin boundary enforcement.