DockSec v2026.6.24 released

By SecBurg

24. Jun 2026

DockSec is an OWASP Lab Project that bridges the gap between complex Docker security scan results and actionable fixes.

It combines industry-standard scanners (Trivy, Hadolint, Docker Scout) with multi-LLM support (OpenAI, Anthropic Claude, Google Gemini, or local Ollama) to deliver plain-English vulnerability explanations and line-specific Dockerfile remediation guidance. Reports export as HTML, PDF, JSON, CSV, or Markdown - and the whole thing can run fully offline with a local model.

v2026.6.24 is out:

- Bump project level from Incubator to Lab (#108)
- fix: prevent PDF generation crash on non-latin-1 characters in AI output (#114)

The project level bump to Lab is a noteworthy milestone - it means DockSec has passed OWASP’s maturity criteria and is now considered a production-ready tool. The PDF fix addresses a crash when AI-generated output contained non-latin-1 characters.

Full release notes: github.com/OWASP/DockSec/releases/tag/v2026.6.24

News
Tools