
from codex-spellbook14
Practical containerization guidance: multi-stage builds, non-root runtime, layer caching, dockerignore hygiene, healthchecks, and secure secret handling.
This skill provides concrete, opinionated guidance for building minimal, reproducible Docker images that are secure and fast to start. It covers multi-stage builds to keep runtime images small, dependency caching patterns to speed CI, non-root runtime user configuration, healthchecks for production readiness, and safe handling of secrets during build and runtime. The guidance is actionable — examples show BAD vs GOOD Dockerfile patterns and a checklist to validate images before deployment.
Activate this skill when writing or reviewing Dockerfiles, refactoring image build pipelines, hardening containers for production, improving CI build cache performance, adding container healthchecks, or auditing secret handling in image builds. It's aimed at developers and SREs who ship containerized services.
.dockerignore hygiene, and a pre-deploy checklist. Examples include BAD/GOOD Dockerfile snippets and rules for when to use scratch, distroless images, and ephemeral build secrets.Best used by code-assistant agents that can edit or review Dockerfiles (Copilot-like agents, Codex-based assistants, or CLI automation bots). The content is language-agnostic and fits into CI/CD review flows.
A clean, reference-only skill providing Docker best practices for multi-stage builds, non-root execution, layer caching, and secret handling. No bundled scripts — purely informational. Well-structured with BAD/GOOD examples and a practical checklist. Broad usefulness for any developer working with containers.
Pure documentation skill with no executable content. Clean SKILL.md with proper frontmatter. Good use of tables and examples. Would benefit from a references/ section linking to official Docker docs.