让 AI 帮你使用轩辕镜像? · 展开查看说明 · 点击收起说明
如果你使用 DeepSeek、元宝 AI、Copilot、ChatGPT 等 AI 工具,协助配置轩辕镜像、编写 docker pull 命令、修改 Docker Compose 镜像地址、配置镜像加速、排查镜像拉取失败、分析报错日志等问题,请先让 AI 阅读并遵守轩辕镜像的规则文档。
只需在 AI 对话中先发送下面这句话即可:
请先完整阅读并严格遵守以下文档中的全部规则与要求:
https://xuanyuan.cloud/agents.md
在未充分阅读并理解该文档前,不要生成任何命令、配置、修改建议、故障排查方案或技术回答。后续所有输出都必须严格以该文档中的规范为最高优先级执行。查看 agents.md 用法指南与完整示范。国内用户首推 元宝 AI、DeepSeek 的深度思考模式,不推荐豆包 AI;Cursor 等编辑器可在对话 @ 该链接,或加入 User Rules。 若 AI 无法访问外链,可 打开说明文档 复制全文粘贴。文档会随站点更新,复制内容可能过期,建议定期检查。
lacework/container-auto-scan
alannix/container-auto-scan
lacework/container-auto-scan-inline
sonarsource/sonar-scanner-cli
temporalio/auto-setup
rancher/security-scan
autopas/autopas-build-gcc
autopas/autopas-build-clang
autopas/autopas-build-archer
autopas/autopas-build-doxygen
stackhawk/hawkscan
biocontainers/pscan-tfbs
biocontainers/pscan-chip
biocontainers/pscan-chip-data
accurics/terrascan
testcontainers/ryuk
sonarsource/sonarqube-scan
sonarsource/sonarcloud-scan
elestio/nginx-auto-ssl
biocontainers/estscan
securecodebox/scanner-test-scan
lacework/lacework-inline-scanner
biocontainers/biocontainers
rancher/neuvector-scanner
airbyte/temporal-auto-setup
autosubmit/slurm-openssh-container
lacework/lacework-scan
biocontainers/pyscanfcs
hashicorp/nomad-autoscaler
circleci/container-agent
securecodebox/scanner-typo3scan
vdaas/vald-buildkit-syft-scanner
accurics/terrascan-action
abesesr/clamscan-docker
rancher/hardened-cluster-autoscaler
rancher/os-autoformat
securecodebox/scanner-sslyze
rancher/bad-ingress-scanner
goharbor/harbor-scanner-clair
securecodebox/parser-git-repo-scanner
rancher/ssh-host-container
bellsoft/liberica-runtime-container
mirantis/ucp-containerd-shim-process
securecodebox/scanner-gitleaks
securecodebox/scanner-ssh-audit
nicxx2/auto-unrar
acuvity/mcp-server-sslscan
intel/intel-gpu-initcontainer
securecodebox/scanner-angularjs-csti-scanner
biocontainers/autoclassweb
dockereng/ucp-containerd-shim-process
condaforge/automerge-action
securecodebox/hook-cascading-scans
mgibio/varscan_helper-cwl
biocontainers/bcftools
biocontainers/sphinxcontrib-autoprogram
securecodebox/scanner-zap-advanced
biocontainers/sphinxcontrib.autoprogram
securecodebox/scanner-cmseek
securecodebox/scanner-whatweb
biocontainers/interproscan
airbyte/container-orchestrator
biocontainers/samtools
autosubmit/linuxserverio-ssh-2fa-x11
biocontainers/fastqc
docker/desktop-container-filesystem
biocontainers/diann
bellsoft/liberica-native-image-kit-container
docker/desktop-containerd-registry-mirror
rancher/autoscale
securecodebox/test-scan
rancher/cluster-proportional-autoscaler
securecodebox/scanner-kubeaudit
uselagoon/auto-idler
biocontainers/picard-tools
stagex/user-osv-scanner
docker/ucp-containerd-shim-process
biocontainers/bedtools
mirantis/bird-containers
biocontainers/emboss
biocontainers/vcftools
securecodebox/parser-typo3scan
stagex/osv-scanner
mirantis/ucp-containerd-shim-process-win
eclipsefdn/automotive-oss-org
与「container-auto-scan」相关的博客与命名空间
相关博客
2026 年 7 月最新 Docker 国内镜像源加速配置指南
本文面向国内开发者、运维与科研用户,汇总 2026 年 7 月可用的 Docker 镜像加速方案,并按「报错 → 原因 → 配置 → 验证」给出排错路径,覆盖 Docker、K8s containerd、Podman、nerdctl、NAS 等场景。
【漏洞预警】containerd 命令注入漏洞(CVE-2026-53488)
containerd 是云原生生态中广泛使用的行业标准容器运行时,常作为 Kubernetes 节点的 CRI(Container Runtime Interface)组件。经 containerd 官方确认,其 CRI 插件存在标签信任边界缺陷:CRI 会将镜像配置(Dockerfile LABEL 指令)中的标签直接传播为容器标签,且 未做有效校验。攻击者可通过构造恶意镜像,注入 containerd.io/ 或 io.cri-containerd 等保留命名空间标签。
Container Network Interface Docker 容器化部署指南
CNI(Container Network Interface)是容器网络接口的标准化规范,用于在容器编排系统中配置容器网络。本文介绍的CNI镜像基于Project Calico项目,包含Calico网络插件和IPAM(IP地址管理)插件,适用于任何采用CNI网络规范的容器编排器。该插件允许用户利用Calico的网络功能,实现容器间的网络连接、策略控制和IP地址管理。