Reorganize Quick Start: clearly separate pre-built image vs build from source

fr4iser90 · fr4iser90 · commit c5b1809fccb2 · 2025-10-27T00:12:11.000+01:00
diff --git a/README.md b/README.md
@@ -73,14 +73,19 @@ SimpleSecCheck is a powerful, single-shot Docker-based security scanner that per
 - Docker and Docker Compose
 - Target codebase or web application to scan
 
-### Easy Usage
+### Quick Start (Pre-built Image - Recommended)
+
+**Option 1: Using Pre-built Image from Docker Hub** ⭐ Recommended
 
 ```bash
 # Clone the repository
 git clone https://github.com/fr4iser90/SimpleSecCheck.git
 cd SimpleSecCheck
 
-# Make the script executable (one-time setup)
+# Pull the pre-built image
+docker pull fr4iser/simpleseccheck:latest
+
+# Make the script executable
 chmod +x run-docker.sh
 
 # Scan a local code project
@@ -90,6 +95,20 @@ chmod +x run-docker.sh
 ./run-docker.sh https://example.com
 ```
 
+**Option 2: Build from Source**
+
+```bash
+# Clone the repository
+git clone https://github.com/fr4iser90/SimpleSecCheck.git
+cd SimpleSecCheck
+
+# Make the script executable
+chmod +x run-docker.sh
+
+# The script will automatically build the Docker image on first run
+./run-docker.sh /path/to/your/project
+```
+
 That's it! Results will be available in the `results/` directory.
 
 ### Scan Examples
@@ -251,24 +270,10 @@ echo "    patterns:" >> rules/custom.yml
 echo "      - pattern: dangerous_function(...)" >> rules/custom.yml
 ```
 
-### Using Pre-built Docker Image
-
-You can pull the pre-built image from Docker Hub and use it directly without cloning the repository:
-
-**Option 1: Using the wrapper script (Recommended)**
-```bash
-# Clone the repository for the wrapper script
-git clone https://github.com/fr4iser90/SimpleSecCheck.git
-cd SimpleSecCheck
-
-# Pull the pre-built image instead of building
-docker pull fr4iser/simpleseccheck:latest
+### Using Docker Directly (Advanced)
 
-# Use the wrapper script with the pre-built image
-./run-docker.sh /path/to/your/project
-```
+For advanced users who want to use Docker directly without the wrapper script:
 
-**Option 2: Using Docker directly (Advanced)**
 ```bash
 # Pull the latest image
 docker pull fr4iser/simpleseccheck:latest
@@ -291,8 +296,6 @@ docker run --rm \
   /SimpleSecCheck/scripts/security-check.sh
 ```
 
-**Note:** The pre-built image contains all necessary configurations. Option 1 is recommended as it handles all volume mounts and environment variables automatically.
-
 ### Direct Docker Compose Usage
 
 For advanced users who want more control:
