Metadata-Version: 2.4
Name: dockaudit
Version: 1.0.2
Summary: Docker infrastructure audit tool
Author: Erico Rakotonirina
License: MIT
Project-URL: Homepage, https://github.com/Erico-MR/dockaudit
Project-URL: Repository, https://github.com/Erico-MR/dockaudit
Keywords: docker,security,audit,devops,sre,containers
Classifier: Development Status :: 4 - Beta
Classifier: Intended Audience :: Developers
Classifier: Intended Audience :: System Administrators
Classifier: License :: OSI Approved :: MIT License
Classifier: Operating System :: OS Independent
Classifier: Programming Language :: Python :: 3
Classifier: Programming Language :: Python :: 3.10
Classifier: Programming Language :: Python :: 3.11
Classifier: Programming Language :: Python :: 3.12
Classifier: Topic :: Security
Classifier: Topic :: System :: Monitoring
Classifier: Topic :: System :: Systems Administration
Requires-Python: >=3.10
Description-Content-Type: text/markdown
Requires-Dist: docker
Requires-Dist: typer
Requires-Dist: rich
Requires-Dist: pydantic
Requires-Dist: httpx

<p align="center">
  <img src="https://raw.githubusercontent.com/Erico-MR/dockaudit/refs/heads/main/logo.png" width="200" alt="DockAudit Logo">
</p>

<h1 align="center">DockAudit</h1>

<p align="center">
  <strong>The Ultimate Pulse for your Docker Infrastructure.</strong><br>
  <em>Audit, Secure, and Monitor your containers in seconds.</em>
</p>

<p align="center">
  <img src="https://img.shields.io/github/license/Erico-MR/dockaudit" alt="License">
  <img src="https://img.shields.io/github/v/release/Erico-MR/dockaudit" alt="Latest Release">
  <img src="https://img.shields.io/github/stars/Erico-MR/dockaudit" alt="GitHub stars">
</p>

---

Most Docker infrastructures are misconfigured. **DockAudit** is a production-grade security auditing tool that unifies container security, performance optimization, and reliability checks into a single, fast interface. Inspired by CIS Docker Benchmarks and powered by real-time intelligence.

## Quick Start (CLI)

Audit your entire local environment with one command:

```bash
docker run \
  -v /var/run/docker.sock:/var/run/docker.sock \
  ercdockercr/dockaudit scan
```

Or install via Pip:
```bash
pip install dockaudit
dockaudit scan
```

---

## V1.0.2: DockAudit Dashboard

Experience real-time monitoring with our new high-fidelity dashboard. Designed with a DevSecOps-centric **Glassmorphism** aesthetic, it provides deep visibility into your operational intelligence.

<p align="center">
  <strong>Global Score • Security Trends • Reliability Metrics • Automated Audits</strong>
</p>

### Deployment

Deploy the full monitoring stack (Frontend + Backend + DB) using Docker Compose:

```bash
# Production Deployment
docker-compose up -d

# Development & Local Build
docker-compose -f docker-compose-dev.yml up --build
```

Access the dashboard at `http://localhost:3000`.

---

## Key Features

- **Multi-Vector Security Scan**: Previleged flags, root capabilities, read-only filesystems, and host-breakout risks.
- **CVE Intelligence**: Integrated with the official **Google OSV API** for real-time vulnerability detection in image layers.
- **Performance Tuning**: Automatically detects missing resource limits (CPU/Memory) and potential sizing issues.
- **Reliability Audit**: Validates restart policies, healthchecks, and orchestration best practices.
- **Secret Detection**: Scans environment variables for leaked credentials, tokens, and sensitive data.
- **Infrastructure Scoring**: Provides actionable KPIs and letter-grade scoring for your entire setup.
- **DevOps Native**: Export findings to **SARIF** or **JSON** for seamless integration with GitHub Security or custom pipelines.

---

## 🛠️ Development

1. **Clone**: `git clone https://github.com/Erico-MR/dockaudit`
2. **Setup**: `pip install -e .`
3. **Explore**: `dockaudit --help`

---

