Engineering
-
Get Started with the Latest Updates for Dockerfile Syntax (v1.7.0)
Dockerfiles are fundamental tools for developers working with Docker, serving as a blueprint for creating Docker images. Learn about new Dockerfile (v1.7.0) capabilities and how you can leverage them in your projects to further optimize your Docker workflows.
Read now
-
Debian’s Dedication to Security: A Robust Foundation for Docker Developers
We outline how and why Debian operates as a secure basis for development and makes a good choice for Docker Official Images.
Read now
-
OpenSSH and XZ/liblzma: A Nation-State Attack Was Thwarted, What Did We Learn?
Docker CTO Justin Cormack looks at what we can learn from malicious code in upstream tarballs of xz targeted at a subset of OpenSSH servers. “It is hard to overstate how lucky we were here, as there are no tools that will detect this vulnerability.”
Read now
-
Is Your Container Image Really Distroless?
Learn what makes an image distroless, tools for building them, and whether distroless containers deliver on performance and security promises.
Read now
-
Docker Security Advisory: Multiple Vulnerabilities in runc, BuildKit, and Moby
Docker security advisory about multiple vulnerabilities in runc, BuildKit, and Moby: We will publish patched versions of runc, BuildKit, and Moby on January 31 and release an update for Docker Desktop on February 1 to address these vulnerabilities. Additionally, our latest Moby and BuildKit releases will include fixes for CVE-2024-23650 and CVE-2024-24557, discovered respectively by an independent researcher and through Docker’s internal research initiatives.
Read now
-
Generating SBOMs for Your Image with BuildKit
Learn how to use BuildKit v0.11 to generate SBOMs so you (and your users) can quickly answer questions about your images and packages.
Read now
-
Announcing Docker Hub OCI Artifacts Support
We’ve officially brought OCI artifact support to Docker Hub! Learn how you can both store and distribute any artifact using Docker’s powerful registry.
Read now
-
Security Advisory: High Severity OpenSSL Vulnerabilities
UPDATE: The OpenSSL Project has officially disclosed two high-severity vulnerabilities: CVE-2022-3602 and CVE-2022-3786. These CVEs impact all OpenSSL versions after 3.0. The sole exception is version 3.0.7, which contains fixes for those latest vulnerabilities. Previously, these CVEs were thought to be “critical.” Learn more here.
Read now