Checkov Docker image base on Alpine linux, for efficient container management.
100K+
Maintained by:
Oowy team
Where to get help:
the Docker Community Slack, Server Fault, Unix & Linux, or Stack Overflow
Based on Alpine Linux 3.19
latest3.2.268-alpine3.19 3.2.267-alpine3.19 3.2.266-alpine3.19 3.2.265-alpine3.19 3.2.264-alpine3.19 3.2.263-alpine3.19 3.2.262-alpine3.19 3.2.261-alpine3.19 3.2.260-alpine3.193.2.259-alpine3.19 3.2.258-alpine3.19 3.2.257-alpine3.19 3.2.256-alpine3.19 3.2.255-alpine3.19 3.2.254-alpine3.19 3.2.253-alpine3.19 3.2.252-alpine3.19 3.2.251-alpine3.19 3.2.250-alpine3.193.2.249-alpine3.19 3.2.248-alpine3.19 3.2.247-alpine3.19 3.2.246-alpine3.19 3.2.245-alpine3.19 3.2.244-alpine3.19 3.2.243-alpine3.19 3.2.242-alpine3.19 3.2.241-alpine3.19 3.2.240-alpine3.193.2.239-alpine3.19 3.2.238-alpine3.19 3.2.237-alpine3.19 3.2.236-alpine3.19 3.2.235-alpine3.19 3.2.234-alpine3.19 3.2.233-alpine3.19 3.2.232-alpine3.19 3.2.231-alpine3.19 3.2.230-alpine3.193.2.229-alpine3.19 3.2.228-alpine3.19 3.2.227-alpine3.19 3.2.226-alpine3.19 3.2.225-alpine3.19 3.2.224-alpine3.19 3.2.223-alpine3.19 3.2.222-alpine3.19 3.2.221-alpine3.19 3.2.220-alpine3.193.2.219-alpine3.19 3.2.218-alpine3.19 3.2.217-alpine3.19 3.2.216-alpine3.19 3.2.215-alpine3.19 3.2.214-alpine3.19 3.2.213-alpine3.19 3.2.212-alpine3.19 3.2.211-alpine3.19 3.2.210-alpine3.193.2.209-alpine3.19 3.2.208-alpine3.19 3.2.207-alpine3.19 3.2.206-alpine3.19 3.2.205-alpine3.19 3.2.204-alpine3.19 3.2.203-alpine3.19 3.2.202-alpine3.19 3.2.201-alpine3.19 3.2.200-alpine3.193.2.199-alpine3.19 3.2.198-alpine3.19 3.2.197-alpine3.19 3.2.196-alpine3.19 3.2.195-alpine3.19 3.2.194-alpine3.19 3.2.193-alpine3.19 3.2.192-alpine3.19 3.2.191-alpine3.19 3.2.190-alpine3.193.2.189-alpine3.19 3.2.188-alpine3.19 3.2.187-alpine3.19 3.2.186-alpine3.19 3.2.185-alpine3.19 3.2.184-alpine3.19 3.2.183-alpine3.19 3.2.182-alpine3.19 3.2.181-alpine3.19 3.2.180-alpine3.193.2.179-alpine3.19 3.2.178-alpine3.19 3.2.177-alpine3.19 3.2.176-alpine3.19 3.2.175-alpine3.19 3.2.174-alpine3.19 3.2.173-alpine3.19 3.2.172-alpine3.19 3.2.171-alpine3.19 3.2.170-alpine3.193.2.169-alpine3.19 3.2.168-alpine3.19 3.2.167-alpine3.19 3.2.166-alpine3.19 3.2.165-alpine3.19 3.2.164-alpine3.19 3.2.163-alpine3.19 3.2.162-alpine3.19 3.2.161-alpine3.19 3.2.160-alpine3.193.2.159-alpine3.19 3.2.158-alpine3.19 3.2.157-alpine3.19 3.2.156-alpine3.19 3.2.155-alpine3.19 3.2.154-alpine3.19 3.2.153-alpine3.19 3.2.152-alpine3.19 3.2.151-alpine3.19 3.2.150-alpine3.193.2.149-alpine3.19 3.2.148-alpine3.19 3.2.147-alpine3.19 3.2.146-alpine3.19 3.2.145-alpine3.19 3.2.144-alpine3.19 3.2.143-alpine3.19 3.2.142-alpine3.19 3.2.141-alpine3.19 3.2.140-alpine3.193.2.139-alpine3.19 3.2.138-alpine3.19 3.2.137-alpine3.19 3.2.136-alpine3.19 3.2.135-alpine3.19 3.2.134-alpine3.19 3.2.133-alpine3.19 3.2.132-alpine3.19 3.2.131-alpine3.19 3.2.130-alpine3.193.2.139-alpine3.19 3.2.138-alpine3.19 3.2.137-alpine3.19 3.2.136-alpine3.19 3.2.135-alpine3.19 3.2.134-alpine3.19 3.2.133-alpine3.19 3.2.132-alpine3.19 3.2.131-alpine3.19 3.2.130-alpine3.193.2.129-alpine3.193.2.109-alpine3.193.2.99-alpine3.19 3.2.98-alpine3.19 3.2.97-alpine3.19 3.2.96-alpine3.19
3.2.95-alpine3.19 3.2.94-alpine3.19 3.2.93-alpine3.19 3.2.92-alpine3.19 3.2.91-alpine3.19 3.2.90-alpine3.193.2.89-alpine3.193.2.79-alpine3.193.2.69-alpine3.193.2.59-alpine3.193.2.49-alpine3.19amd64, arm64v8Checkov is an open-source software tool for infrastructure as code (IaC) that performs static code analysis to identify and report misconfigurations and security risks in Terraform, CloudFormation, Kubernetes, and other IaC frameworks. Developed by Bridgecrew, Checkov helps developers and DevOps teams maintain compliance and security best practices during the development and deployment process of infrastructure resources.
With its built-in policies and option to create custom policies, Checkov provides automated scanning capabilities, enabling teams to identify potential vulnerabilities early in the development lifecycle.
Running Checkov inside a Docker container requires more configuration than running the Checkov executables directly. Unless you need container isolation, we recommend using [the non-containerized Checkov packages](the non-containerized Checkov packages).

The team publishes a Docker image to this repository for each official release of Checkov. Each versioned image includes the Checkov release with the same version number.
These images wrap the Checkov executable, allowing you to run Checkov subcommands by passing in their names and arguments as part of docker run.
For example, the command below uses the 'latest' tag to generate a 'plan' using the most recent version of Checkov:
docker run -i -t oowy/checkov:latest
Note that for production use, we recommend specifying a specific version instead of using latest.
You will likely need to further configure your container so that Checkov can access your configuration files and provider credentials. This could include mounting your configuration into the container, setting the working directory to refer to your configuration, and passing in environment variables and credentials files for the providers you intend to use. The docker run documentation lists the options you can use to customize the container environment. You could also use these images as a base for your own images. For example, this would be helpful if you wanted to to pre-set CLI Configuration settings as part of your image.
Open issues about Checkov binary on the main Checkov repository.
Content type
Image
Digest
sha256:0ff9e5c2c…
Size
158.6 MB
Last updated
10 months ago
docker pull oowy/checkov