1 Repo
Security intermediaries that protect system sockets from unauthorized or malicious container access.
Distinguishing note: Existing candidates focus on orchestrators or runtimes, not a security proxy layer for the socket.
Explore 1 awesome GitHub repository matching security & cryptography · Socket Security Layers. Refine with filters or upvote what's useful.
docker-socket-proxy is an HAProxy-based security proxy that filters and controls access to the Docker API. It acts as a security layer between containers and the Docker socket to restrict API operations based on specific paths and methods. The proxy uses environment variables to enable or disable specific API endpoints and to grant or revoke permissions for various API sections. It can enforce read-only access by restricting the API to only allow GET and HEAD requests, returning a forbidden status for unauthorized actions. The project provides capabilities for path-based request filtering, c
Adds a security layer between containers and the Docker socket to prevent container escape and host compromise.