security
-
Apr 4, 2024
From Misconceptions to Mastery: Enhancing Security and Transparency with Docker Official Images
Docker Official Images are an important component of Docker’s commitment to the security of both the software supply chain and open source software. We address three common misconceptions about Docker Official Images and outline seven ways they help secure the software supply chain.
David DoolingRead now
-
Apr 1, 2024
OpenSSH and XZ/liblzma: A Nation-State Attack Was Thwarted, What Did We Learn?
Docker CTO Justin Cormack looks at what we can learn from malicious code in upstream tarballs of xz targeted at a subset of OpenSSH servers. “It is hard to overstate how lucky we were here, as there are no tools that will detect this vulnerability.”
Justin CormackRead now
-
Mar 27, 2024
Is Your Container Image Really Distroless?
Learn what makes an image distroless, tools for building them, and whether distroless containers deliver on performance and security promises.
Laurent GoderreRead now
-
Mar 5, 2024
Filter Out Security Vulnerability False Positives with VEX
False positives got you down? VEX works with Docker Scout to filter out false positives in security vulnerabilities. Learn how to get started with this powerful combo.
David KarlssonandTazin ProggaRead now
-
Feb 29, 2024
Azure Container Registry and Docker Hub: Connecting the Dots with Seamless Authentication and Artifact Cache
See best practices for using public images and ensuring the security and reliability of your Docker containers.
Jason DunneRead now
-
Feb 20, 2024
How to Use OpenPubkey to Solve Key Management via SSO
We show how OpenPubkey can be used to improve SSH key management, and we look at three use cases in detail.
Ethan HeilmanandJonny StotenRead now
-
Jan 31, 2024
Docker Security Advisory: Multiple Vulnerabilities in runc, BuildKit, and Moby
Docker security advisory about multiple vulnerabilities in runc, BuildKit, and Moby: We will publish patched versions of runc, BuildKit, and Moby on January 31 and release an update for Docker Desktop on February 1 to address these vulnerabilities. Additionally, our latest Moby and BuildKit releases will include fixes for CVE-2024-23650 and CVE-2024-24557, discovered respectively by an independent researcher and through Docker’s internal research initiatives.
Gabriela GeorgievaRead now
-
Jan 25, 2024
EJBCA and Docker — Streamlining PKI Management and TLS Certificate Issuance
Learn how to deploy EJBCA as a Docker container, making your infrastructure setup more modern, efficient, and flexible for your security and certificate management needs.
Sven RajalaRead now
