Development
Docker Run to Compose
Convert docker run commands into Docker Compose YAML.
Development
Analyze Dockerfiles, inspect build stages and detect common image issues.
Paste a Dockerfile to inspect stages, instructions and common build issues.
Paste a Dockerfile and select Analyze Dockerfile to inspect its stages, instructions and common issues.
Dockerfiles are analyzed locally inside your browser. Findings are heuristic and should be reviewed before changing a production image.
About this tool
Dockerfile Analyzer inspects Dockerfile instructions and build stages while detecting common reproducibility, security and image-size issues. Review base images, package installation commands, copied files, runtime users and potentially sensitive configuration.
Features
Frequently asked questions
No. It only parses and analyzes the Dockerfile source and never runs Docker.
No. The analyzer uses heuristic rules. Every finding should be reviewed in the context of the application and base image.
The latest tag is mutable, so identical Dockerfiles can resolve to different base image contents at different times.
A non-root runtime user can reduce the impact of a compromised process when the application does not require elevated privileges.
Removing cached package metadata after installation can reduce the size of Debian- and Ubuntu-based images.
No. Parsing, stage detection and issue analysis happen locally inside your browser.
Related tools
Development
Convert docker run commands into Docker Compose YAML.
Development
Parse Docker image references into registry, namespace, repository, tag and digest components.
Development
Parse, inspect, validate, search and export environment variable files.