TRAIN
SEC

TrainSec Dashboard

Sandbox Container Security Monitor · Built by Mehrab Rahman

Live
env: training-prod-sg-01
Cohort:
24
Active Containers
847
Total CVEs Inherited
63
Critical Severity
7
Escape Attempts
21
Fully Isolated
Student Container Environments
Click any row to inspect security posture
HIGH RISK
Container / Student
Risk Level
CVEs
Base Image
Isolation
Top Remediations
Highest-impact fixes
🔴

Replace ubuntu:20.04 base

Eliminates 312 CVEs across 8 containers
🟡

Patch OpenSSL 1.1.x → 3.x

3 critical CVEs, affects 14 containers
🟡

Remove curl from prod images

Reduces attack surface, 6 containers
🔵

Enable seccomp profiles

Blocks 94% of syscall-based escapes
Base Image CVE Comparison
Public vs. CleanStart hardened
// CVE exposure by image
ubuntu:20.04
312 CVEs
cs/ubuntu:20.04
python:3.9
169 CVEs
cs/python:3.9
node:18
213 CVEs
cs/node:18
✓ CleanStart eliminates 847 CVEs from this cohort's environment
Container Boundary Events
Privilege escalation attempts, namespace escapes, mount violations · last 60 min
7 BLOCKED
Built by Mehrab Rahman · Demonstrates container isolation monitoring for enterprise training environments
CVE data representative of public image vulnerability profiles · Escape detection via seccomp + namespace audit
Container Detail