diff --git a/.github/dependabot.yml b/.github/dependabot.yml
index 83332f89..328d1dc1 100644
--- a/.github/dependabot.yml
+++ b/.github/dependabot.yml
@@ -10,3 +10,7 @@ updates:
   directory: "/"
   schedule:
     interval: "daily"
+- package-ecosystem: "docker"
+  directory: "/tools"
+  schedule:
+    interval: "daily"
diff --git a/Makefile b/Makefile
index 4b9b8c58..281d1375 100644
--- a/Makefile
+++ b/Makefile
@@ -83,7 +83,7 @@ lint-fix:
 .PHONY: sec
 sec:
 	@echo "==> Checking source code against security issues..."
-	docker run -t --rm -v $(PWD):/app -w /app securego/gosec:$(GOSEC_VERSION) GOFLAGS=-buildvcs=false gosec /app/$(PKG_NAME)/...
+	docker run -t --rm -e GOFLAGS=-buildvcs=false -v $(PWD):/app -w /app securego/gosec:$(GOSEC_VERSION) gosec /app/$(PKG_NAME)/...
 
 .PHONY: docs
 docs:
diff --git a/tools/golint.Dockerfile b/tools/golint.Dockerfile
new file mode 100644
index 00000000..0c512860
--- /dev/null
+++ b/tools/golint.Dockerfile
@@ -0,0 +1,3 @@
+FROM golangci/golangci-lint:v1.61.0
+
+# Please also update GOLINT_VERSION in Makefile
\ No newline at end of file
diff --git a/tools/gosec.Dockerfile b/tools/gosec.Dockerfile
new file mode 100644
index 00000000..d4c9ee94
--- /dev/null
+++ b/tools/gosec.Dockerfile
@@ -0,0 +1,3 @@
+FROM securego/gosec:2.21.4
+
+# Please also update GOSEC_VERSION in Makefile
\ No newline at end of file