I built a container escape audit tool (opens in new tab)

canonical_url: Container security tooling tends to fall into two camps: heavyweight scanners that run outside the container before deployment, and ad-hoc one-liners you paste into a shell when something looks wrong. container_escape_audit.sh sits in neither — it runs inside a live container, checks the actual runtime environment, and tells you exactly what an attacker who just landed in that container would be looking at. Version 4.0 adds 12 kernel hardening checks, a config-driven CVE engine...