代码层面的漏洞
https://www.cvedetails.com/vulnerability-list/vendor_id-33/product_id-47/year-2021/Linux-Linux-Kernel.html
dockerd的rootless模式
Demo project:
https://github.com/xiaopeng163/flask-redis
Docker Bench for Security
https://github.com/docker/docker-bench-security
CVE https://cve.mitre.org/
代码扫描 https://snyk.io/
镜像扫描 https://github.com/aquasecurity/trivy#os-packages