missing-user-entrypoint
missing-user
secret-in-build-arg
docker image history
on the image will show information on how the image was built, including arguments. If these contain plain text secrets, anyone with access to the docker image can access those secrets and exploit them.last-user-is-root
no-sudo-in-dockerfile