security
-
Feb 10, 2026
Hardened Images Are Free. Now What?
Docker Hardened Images are now free. Learn the waterline model, supply chain isolation, VEX, and policy automation to cut CVE noise and meet compliance.
Mark LechnerRead now
-
Feb 3, 2026
The 3Cs: A Framework for AI Agent Security
Every time execution models change, security frameworks need to change with them. Agents force the next shift. The Unattended Laptop Problem No developer would leave their laptop unattended and unlocked. The risk is obvious. A developer laptop has root-level access to production systems, repositories, databases, credentials, and APIs. If someone sat down and started using…
Srini SekaranandEli AleynerRead now
-
Jan 22, 2026
Your Dependencies Don’t Care About Your FIPS Configuration
FIPS images alone won’t ensure compliance. Learn how prebuilt native deps can bypass your crypto boundary—and how to build, test, and ship FIPS-compatible apps.
Laurent GoderreRead now
-
Dec 19, 2025
Docker Hardened Images: Security Independently Validated by SRLabs
Earlier this week, we took a major step forward for the industry. Docker Hardened Images (DHI) is now available at no cost, bringing secure-by-default development to every team, everywhere. Anyone can now start from a secure, minimal, production-ready foundation from the first pull, without a subscription. With that decision comes a responsibility: if Docker Hardened Images become…
Christian DupuisRead now
-
Nov 25, 2025
Securing the software supply chain shouldn’t be hard. According to theCUBE Research, Docker makes it simple
In today’s software-driven economy, securing software supply chains is no longer optional, it’s mission-critical. Yet enterprises often struggle to balance developer speed and security. According to theCUBE Research, 95% of organizations say Docker improved their ability to identify and remediate vulnerabilities, while 79% rate it highly effective at maintaining compliance with security standards. Docker embeds…
John H. AyubandAditya TripathiRead now
-
Nov 13, 2025
MCP Horror Stories: The WhatsApp Data Exfiltration Attack
How tool poisoning turns WhatsApp into a data exfiltration channel, and how Docker MCP Gateway blocks it with validation, network isolation, and audit logging.
Ajeet Singh RainaRead now
-
Guest Contributor Oct 31, 2025
Security Doesn’t Have to Hurt
Rigid security breeds shadow IT. See how shared responsibility lets security and developers ship faster, reduce risk, and make DevSecOps work—without ‘no’.
Alison GunnelsRead now
-
Oct 30, 2025
theCUBE Research economic validation of Docker’s development platform
Docker’s ROI and impact on agentic AI, security, and developer productivity. theCUBE Research surveyed ~400 IT and AppDev professionals at leading global enterprises to investigate Docker’s ROI and impact on agentic AI development, software supply chain security, and developer productivity. The industry context is that enterprise developers face mounting pressure to rapidly ship features, build…
John H. AyubRead now