Collection of ideas and specific exploits against Docker CVE scanners You can read more on the background within the following Medium post: Testing docker CVE scanners Part 25 — Exploiting CVE scanners TL;DR Most Docker image scanners make use of shell access, run package managers, if you run it on the Dockerfile you don't know you could expect Running them on un