From 80bf63eb34cc8a5e050e715686b6df4f541cfcd0 Mon Sep 17 00:00:00 2001 From: Arkadii Yakovets Date: Wed, 17 Jun 2026 11:47:41 -0700 Subject: [PATCH] Bump project level from Incubator to Lab. No announcement added. --- .DS_Store | Bin 6148 -> 0 bytes .gitignore | 4 ++++ README.md | 6 +++--- index.md | 6 +++--- 4 files changed, 10 insertions(+), 6 deletions(-) delete mode 100644 .DS_Store diff --git a/.DS_Store b/.DS_Store deleted file mode 100644 index 5546f933f4898d6b1a83b1a5f80522cfbac2a700..0000000000000000000000000000000000000000 GIT binary patch literal 0 HcmV?d00001 literal 6148 zcmeHK%}T>S5Z<-5Nhm@O3Oz1(Em*Y{#7l_v1&ruHr6wfQV45vWYYwH5v%Zi|;`2DO zyEz04-bCyS?0&QJvzz%K`@6ITEJk8qYI`J&(d-|vaRaIo%) z)%gkPr^EHyu@4T9F0RKf=`@pXnn(_uE7>zx!8<6mnqK{Rmdb1b_9~}}B_sxj0b+m{ z*ggi#Szx!fuXL)I7$63IU;y_A0S(bLSZY*T2XuISMt>6#1$2B%APR%7!BQi5K)6l? z)T!J&F}O|#yD)LC!BV46XI!le^O%*Z#|u}hgI%a_#$Aon69dFRoq>iPcJTbaf?sCi zBfp+PBVvFU_-738=Exs;P?R}azm@Z$`$$(gwO^nPajwBq VBhG?$l@3T30YwOP#K12w@CAi$ObGx0 diff --git a/.gitignore b/.gitignore index 8ced8eb..c1e6d8f 100644 --- a/.gitignore +++ b/.gitignore @@ -50,6 +50,7 @@ coverage.xml *.py,cover .hypothesis/ .pytest_cache/ +.vscode/ cover/ # Translations @@ -195,3 +196,6 @@ CURSOR_CONFIGURATION.md # Claude Code project instructions (local only, not for public repository) CLAUDE.md + +# macOS +.DS_Store diff --git a/README.md b/README.md index 8f02560..0920684 100644 --- a/README.md +++ b/README.md @@ -1,6 +1,6 @@
-[![OWASP](https://img.shields.io/badge/Incubator-blue?&label=level&style=for-the-badge)](https://owasp.org/DockSec/) [![OWASP](https://img.shields.io/badge/Code-blue?label=type&style=for-the-badge)](https://owasp.org/DockSec/) [![project-docksec](https://img.shields.io/badge/%23project--docksec-blue?label=slack&logoColor=white&style=for-the-badge)](https://owasp.slack.com/archives/C0APXGCUW7M) [![Build Status](https://img.shields.io/github/actions/workflow/status/OWASP/DockSec/python-app.yml?branch=main&style=for-the-badge&label=Build&color=blue)](https://github.com/OWASP/DockSec/actions) +[![OWASP](https://img.shields.io/badge/Lab-blue?&label=level&style=for-the-badge)](https://owasp.org/DockSec/) [![OWASP](https://img.shields.io/badge/Code-blue?label=type&style=for-the-badge)](https://owasp.org/DockSec/) [![project-docksec](https://img.shields.io/badge/%23project--docksec-blue?label=slack&logoColor=white&style=for-the-badge)](https://owasp.slack.com/archives/C0APXGCUW7M) [![Build Status](https://img.shields.io/github/actions/workflow/status/OWASP/DockSec/python-app.yml?branch=main&style=for-the-badge&label=Build&color=blue)](https://github.com/OWASP/DockSec/actions)
[![OpenSSF Best Practices](https://img.shields.io/cii/level/12939?label=openssf%20best%20practices&style=for-the-badge)](https://www.bestpractices.dev/projects/12939) @@ -28,7 +28,7 @@ ## What is DockSec? -DockSec is an **OWASP Incubator Project** that bridges the gap between complex security scan results and actionable developer fixes. It integrates industry-standard scanners (Trivy, Hadolint, Docker Scout) with advanced AI to provide **context-aware security analysis**. +DockSec is an **OWASP Lab Project** that bridges the gap between complex security scan results and actionable developer fixes. It integrates industry-standard scanners (Trivy, Hadolint, Docker Scout) with advanced AI to provide **context-aware security analysis**. Instead of overwhelming you with a list of 200+ CVEs, DockSec: @@ -127,7 +127,7 @@ Here is a comparison of how DockSec relates to other container security tools. | Capability | DockSec | Trivy (standalone) | Snyk Container | Aikido | |---|---|---|---|---| | License and cost | Free, open source (MIT) | Free, open source (Apache 2.0) | Commercial (limited free tier) | Commercial (limited free tier) | -| Governance | OWASP Incubator Project, vendor neutral | Open source, maintained by Aqua | Single vendor | Single vendor | +| Governance | OWASP Lab Project, vendor neutral | Open source, maintained by Aqua | Single vendor | Single vendor | | Detects CVEs and Dockerfile misconfigurations | Yes | Yes | Yes | Yes | | Contextual, line level Dockerfile remediation | Yes (line specific rewrites with explanation) | No (detection only) | Yes (base image upgrade advice, fix PRs) | Yes (AI AutoFix PRs) | | Runs fully offline / air gapped | Yes (local LLM via Ollama, scan only mode, no API key) | Yes for scanning (no remediation layer) | No (cloud platform) | No (hosted platform) | diff --git a/index.md b/index.md index edad876..8f3749d 100644 --- a/index.md +++ b/index.md @@ -2,12 +2,12 @@ layout: col-sidebar title: OWASP DockSec tags: docksec -level: 2 +level: 3 type: documentation ---

- OWASP Incubator + OWASP Lab OWASP Code Slack Build Status @@ -47,7 +47,7 @@ type: documentation ## What is DockSec? -DockSec is an **OWASP Incubator Project** that bridges the gap between complex security scan results and actionable developer fixes. It integrates industry-standard scanners (Trivy, Hadolint, Docker Scout) with advanced AI to provide **context-aware security analysis**. +DockSec is an **OWASP Lab Project** that bridges the gap between complex security scan results and actionable developer fixes. It integrates industry-standard scanners (Trivy, Hadolint, Docker Scout) with advanced AI to provide **context-aware security analysis**. Instead of overwhelming you with a list of 200+ CVEs, DockSec: