Kinda good starting points for improving dockerized security