Automic VaultAutomic Vault

brew / 审批门

使用 Homebrew, apk, chocolatey, MacPorts, Nix, pacman, zypper, apt, dnf, scoop, winget 安装 docker

查看 docker 的安装路径、可执行文件、元数据以及面向 AI 代理工作流的安全说明。

代理安全

代理安全回答

docker controls containers, images, mounts, registries, and local build state that agents can use to reach host files.

凭据访问

Reads Docker registry auth, mounted secrets, build args, and files exposed through volume mounts.

远程变更

Can push images, change containers, and alter running local or remote Docker contexts.

发布/制品风险

Can build and publish images that become production artifacts.

推荐控制

Gate image pushes, privileged containers, host mounts, and context changes.

代理使用指南

Allow local inspection and builds with constrained mounts; require approval for registry pushes and privileged execution.

安装

其他安装命令

macOS

Homebrew已验证 · 100%
brew install docker

local Homebrew formula metadata

MacPorts已验证 · 94%
sudo port install docker

MacPorts ports tree · devel/docker/Portfile · 来源: api.github.com

Linux

Alpine Linux apk已验证 · 92%
sudo apk add docker

Alpine Linux edge package indexes · docker · 来源: dl-cdn.alpinelinux.org

Nix已验证 · 92%
nix profile install nixpkgs#docker

nixpkgs package indexes · docker · 来源: raw.githubusercontent.com

Arch Linux pacman已验证 · 92%
sudo pacman -S docker

Arch Linux sync databases · docker · 来源: geo.mirror.pkgbuild.com

openSUSE zypper已验证 · 92%
sudo zypper install docker

openSUSE Tumbleweed package metadata · docker · 来源: download.opensuse.org

Debian apt已验证 · 92%
sudo apt install wmdocker

Debian stable package indexes · wmdocker · 来源: deb.debian.org

Fedora dnf已验证 · 92%
sudo dnf install moby-engine

Fedora Rawhide package metadata · moby-engine · 来源: dl.fedoraproject.org

Windows

Chocolatey已验证 · 92%
choco install docker

Chocolatey community package catalog · docker · 来源: community.chocolatey.org

Scoop已验证 · 92%
scoop install main/docker

Scoop official bucket manifest trees · bucket/docker.json · 来源: api.github.com

Windows Package Manager已验证 · 92%
winget install --id Docker.DockerDesktop -e

Windows Package Manager source index · Docker.DockerDesktop · 来源: cdn.winget.microsoft.com

概览

软件包摘要

Pack, ship and run any application as a lightweight container

命令和别名

  • docker

历史

项目历史与用法

Docker is the package that made container workflows a default part of developer tooling. The Homebrew docker formula installs the CLI, but the broader Docker project combines the command-line client, daemon, image format, registry workflows, Docker Hub, Docker Desktop, Compose, BuildKit, and related projects into the everyday vocabulary of build, ship, and run.

项目历史

Docker's documentation defines Docker as an open platform for developing, shipping, and running applications, using containers as lightweight isolated environments. The docker/cli repository is the home of the Docker CLI, the command-line client that talks to the Docker daemon over the Docker API.

Docker's architecture joined a local client, a daemon, images, containers, registries, and distribution workflows into one approachable developer interface. Over time, major parts of the ecosystem were split or formalized into related projects such as Docker Distribution, containerd, runc, BuildKit, Compose, and Docker Desktop.

采用历史

Docker spread because it made containerized development and CI/CD reproducible with ordinary commands such as docker build, run, pull, push, and compose-oriented workflows. Docker Hub provided the default public registry, and package managers made the CLI easy to install even on systems where the daemon or Desktop app came from a separate package.

The tool's adoption also reshaped packaging expectations. Application projects began shipping Dockerfiles, official images, compose files, and registry tags as part of their release surface. For many developers, installing docker became the practical entry point for running databases, language runtimes, build services, and whole application stacks locally.

使用方式

The docker command is the primary way many users interact with Docker. The client sends commands such as docker run to dockerd, which builds, runs, and distributes containers. Users pull and push images through registries, build images from Dockerfiles, inspect containers and images, manage networks and volumes, and configure CLI behavior in ~/.docker/config.json or through DOCKER_CONFIG.

为什么软件包爱好者会关心

For package nerds, docker is significant because it moved a large amount of software distribution from host-native packages to OCI-style images and registries. It also became a dependency of development workflows: a package manager entry for docker often means access to thousands of image-packaged tools rather than only one executable.

The CLI package is also interesting because it is only one face of Docker. On macOS, the standalone CLI, Docker Desktop, credential helpers, Compose, Buildx, and the daemon are related but not always delivered by the same package. That split makes docker a useful case study in how package managers model large developer platforms.

时间线

  • 2013: Solomon Hykes first publicly demoed Docker at PyCon.
  • Docker platform era: The official architecture centers on a docker client, dockerd daemon, Docker API, images, containers, and registries.
  • CLI repository era: Docker CLI development lives in the docker/cli repository as the home of the command-line client.
  • 2023: Docker v23 made BuildKit the default builder for Linux images, with the legacy builder deprecated in Docker documentation.
  • 2026: Docker documentation still treats docker as the primary CLI for container lifecycle and registry workflows.

Related projects

  • Related projects include Docker Engine, Moby, containerd, runc, Docker Distribution, Docker Hub, Docker Desktop, Docker Compose, BuildKit, Buildx, and Docker credential helpers.

审批门

高风险命令的人工审核元数据

本地审批门种子包含 6 条适用于 docker 的规则。覆盖的入口点:docker。严重级别:严重, 高。覆盖状态:partial,审核于 2026-05-21。

受控操作示例

  • Store registry credentials.
  • Push an image to a registry.
  • Run a container with elevated host privileges.
  • Mount host paths into a container.
  • Force-remove containers, images, volumes, networks, or system data.
  • Execute a command inside a running container.

local files

Configuration and credential file locations

These source-backed paths show where this package keeps local settings or durable credentials. Automic Vault can use them as review targets for secret scanning, migration, and command approval.

Configuration files

Config paths the tool may read or write during local use.

Unix
~/.docker/config.json

Credential files

Credential-bearing paths to review before unattended agent runs.

Unix
~/.docker/config.json

可执行文件

已安装的可执行文件

命令类型暴露范围备注
dockercli全局可执行文件

新鲜度

版本和新鲜度

这些信号区分页生成时间、软件包管理器活动和上游发布比较。只有存在证据 URL 和可比较版本时,才会提示版本落后。

页面生成时间2026-07-10
管理器版本29.6.1
管理器更新时间2026-06-26
本地数据OK
上游not checked
检测到的最新版本未检测到

https://github.com/docker/cli

安装元数据

软件包元数据

软件包键brew:docker
版本29.6.1
软件包管理器Homebrew
软件包管理器页面https://formulae.brew.sh/formula/docker
主页https://www.docker.com/
仓库https://github.com/docker/cli
上游文档https://docs.docker.com/get-started/docker-overview
许可证Apache-2.0
源码归档https://github.com/docker/cli.git
最后更新2026-06-26T15:34:47Z
Pulseupdated
构建依赖go, go-md2man
Bottle可用 (于 arm64_linux, arm64_sequoia, arm64_sonoma, arm64_tahoe, sonoma, x86_64_linux)
Homebrew post-install未定义
服务未声明

注册表事实

源数据库详情

Source DatabaseHomebrew formula API
Taphomebrew/core
Full Namedocker
Version Scheme0
Revision0
Head VersionHEAD
Bottle Stable Root URLhttps://ghcr.io/v2/homebrew/core
Deprecatedno
Disabledno
Keg Onlyno
URL Keys
  • head
  • stable

源数据库匹配

其他软件包管理器记录

匹配项来自外部软件包管理器索引,并与本地 Automic Vault 软件包链接分开显示。

Debian apt95%

wmdocker 1.5-4+b1

System tray for KDE3/GNOME2 docklet applications

sudo apt install wmdocker
  • Section: x11
  • Architecture: amd64
  • Source Package: docker
  • 3 依赖
  • normalized package name match
  • 匹配方式:Docker
Debian stable package indexes · deb.debian.org · Debian stable package indexes: wmdocker from https://deb.debian.org/debian/dists/stable/main/binary-amd64/Packages.xz
Nix95%

docker

nix profile install nixpkgs#docker
  • normalized package name match
  • 匹配方式:Docker
nixpkgs package indexes · raw.githubusercontent.com · nixpkgs package indexes: docker from https://raw.githubusercontent.com/NixOS/nixpkgs/master/pkgs/top-level/all-packages.nix
Ubuntu apt95%

wmdocker 1.5-4build3

System tray for KDE3/GNOME2 docklet applications

sudo apt install wmdocker
  • Section: universe/x11
  • Architecture: amd64
  • Source Package: docker
  • 3 依赖
  • normalized package name match
  • 匹配方式:Docker
Ubuntu 24.04 LTS package indexes · archive.ubuntu.com · Ubuntu 24.04 LTS package indexes: wmdocker from https://archive.ubuntu.com/ubuntu/dists/noble/universe/binary-amd64/Packages.gz
apk95%

docker 29.5.3-r0

Pack, ship and run any application as a lightweight container

https://www.docker.io/

sudo apk add docker
  • License: Apache-2.0
  • Architecture: x86_64
  • Source Package: docker
  • 1 依赖
  • normalized package name match
  • 匹配方式:Docker
Alpine Linux edge package indexes · dl-cdn.alpinelinux.org · Alpine Linux edge package indexes: docker from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
apk95%

docker-bash-completion 29.5.3-r0

Bash completions for docker

https://www.docker.io/

sudo apk add docker-bash-completion
  • License: Apache-2.0
  • Architecture: x86_64
  • Source Package: docker
  • normalized package name match
  • 匹配方式:Docker
Alpine Linux edge package indexes · dl-cdn.alpinelinux.org · Alpine Linux edge package indexes: docker-bash-completion from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
apk95%

docker-cli 29.5.3-r0

Docker CLI

https://www.docker.io/

sudo apk add docker-cli
  • License: Apache-2.0
  • Architecture: x86_64
  • Source Package: docker
  • 1 依赖
  • 1 提供
  • normalized package name match
  • 匹配方式:Docker
Alpine Linux edge package indexes · dl-cdn.alpinelinux.org · Alpine Linux edge package indexes: docker-cli from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
apk95%

docker-doc 29.5.3-r0

Documentation for Docker

https://www.docker.io/

sudo apk add docker-doc
  • License: Apache-2.0
  • Architecture: x86_64
  • Source Package: docker
  • normalized package name match
  • 匹配方式:Docker
Alpine Linux edge package indexes · dl-cdn.alpinelinux.org · Alpine Linux edge package indexes: docker-doc from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
apk95%

docker-engine 29.5.3-r0

Docker Engine (dockerd)

https://www.docker.io/

sudo apk add docker-engine
  • License: Apache-2.0
  • Architecture: x86_64
  • Source Package: docker
  • 1 依赖
  • 1 提供
  • normalized package name match
  • 匹配方式:Docker
Alpine Linux edge package indexes · dl-cdn.alpinelinux.org · Alpine Linux edge package indexes: docker-engine from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
apk95%

docker-fish-completion 29.5.3-r0

Fish completions for docker

https://www.docker.io/

sudo apk add docker-fish-completion
  • License: Apache-2.0
  • Architecture: x86_64
  • Source Package: docker
  • normalized package name match
  • 匹配方式:Docker
Alpine Linux edge package indexes · dl-cdn.alpinelinux.org · Alpine Linux edge package indexes: docker-fish-completion from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
apk95%

docker-openrc 29.5.3-r0

Pack, ship and run any application as a lightweight container (OpenRC init scripts)

https://www.docker.io/

sudo apk add docker-openrc
  • License: Apache-2.0
  • Architecture: x86_64
  • Source Package: docker
  • 1 依赖
  • normalized package name match
  • 匹配方式:Docker
Alpine Linux edge package indexes · dl-cdn.alpinelinux.org · Alpine Linux edge package indexes: docker-openrc from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
apk95%

docker-rootless-extras 29.5.3-r0

Extras to run docker as in rootless mode

https://docs.docker.com/engine/security/rootless/

sudo apk add docker-rootless-extras
  • License: Apache-2.0
  • Architecture: x86_64
  • Source Package: docker
  • 1 依赖
  • 1 提供
  • normalized package name match
  • 匹配方式:Docker
Alpine Linux edge package indexes · dl-cdn.alpinelinux.org · Alpine Linux edge package indexes: docker-rootless-extras from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
apk95%

docker-rootless-extras-openrc 29.5.3-r0

OpenRC scripts for running docker in rootless mode

https://www.docker.io/

sudo apk add docker-rootless-extras-openrc
  • License: Apache-2.0
  • Architecture: x86_64
  • Source Package: docker
  • 1 依赖
  • normalized package name match
  • 匹配方式:Docker
Alpine Linux edge package indexes · dl-cdn.alpinelinux.org · Alpine Linux edge package indexes: docker-rootless-extras-openrc from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
apk95%

docker-systemd 29.5.3-r0

Pack, ship and run any application as a lightweight container (systemd files)

https://www.docker.io/

sudo apk add docker-systemd
  • License: Apache-2.0
  • Architecture: x86_64
  • Source Package: docker
  • normalized package name match
  • 匹配方式:Docker
Alpine Linux edge package indexes · dl-cdn.alpinelinux.org · Alpine Linux edge package indexes: docker-systemd from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
apk95%

docker-zsh-completion 29.5.3-r0

Zsh completions for docker

https://www.docker.io/

sudo apk add docker-zsh-completion
  • License: Apache-2.0
  • Architecture: x86_64
  • Source Package: docker
  • normalized package name match
  • 匹配方式:Docker
Alpine Linux edge package indexes · dl-cdn.alpinelinux.org · Alpine Linux edge package indexes: docker-zsh-completion from https://dl-cdn.alpinelinux.org/alpine/edge/community/x86_64/APKINDEX.tar.gz
dnf95%

moby-engine 29.5.3-1.fc45

The open-source application container engine

https://github.com/moby/moby

sudo dnf install moby-engine
  • License: Apache-2.0 AND BSD-2-Clause AND BSD-3-Clause AND ISC AND MIT AND MPL-2.0 AND (Apache-2.0 OR GPL-2.0-or-later)
  • Category: Unspecified
  • Architecture: x86_64
  • Source Package: moby-engine
  • 17 依赖
  • 4 提供
  • normalized package name match
  • 匹配方式:Docker
Fedora Rawhide package metadata · dl.fedoraproject.org · Fedora Rawhide package metadata: moby-engine from https://dl.fedoraproject.org/pub/fedora/linux/development/rawhide/Everything/x86_64/os/repodata/e5ca8ce900cd68f5419e1c39ae517343100b306336cbaeb70a3c153121d95094-primary.xml.zst
pacman95%

docker 1:29.5.2-1

Pack, ship and run any application as a lightweight container

https://www.docker.com/

sudo pacman -S docker
  • License: Apache-2.0
  • Architecture: x86_64
  • 10 依赖
  • 3 可选依赖
  • normalized package name match
  • 匹配方式:Docker
Arch Linux sync databases · geo.mirror.pkgbuild.com · Arch Linux sync databases: docker from https://geo.mirror.pkgbuild.com/extra/os/x86_64/extra.db.tar.gz

来源线索

由仓库数据生成

此页面由 av-webscripts/generate-pkg-sqlite.py 生成的私有软件包 SQLite 工件提供。

使用的来源

  • Geiger risk classifier
  • Nucleus package database
  • approval-gate seed metadata
  • av.db category and tag curation
  • cross-ecosystem install command graph
  • curated agent safety answer
  • curated configuration and credential file locations
  • curated package history
  • external package-manager database matches
  • package relationship graph
  • package version freshness
  • package-page enrichment