Welcome to the October edition of Docker Navigator. Missed an issue? Read past issues in our collection.
This month, we’re spotlighting security and accessibility with unlimited access to Docker Hardened Images, making enterprise-grade protection available to every team. You’ll also find new resources on building and securing AI agents, the latest CNCF partnership updates, new AI Guide to the Galaxy episodes, community highlights, along with upcoming events and webinars.
Unlimited access to Docker Hardened Images: Because security should be affordable, always
Docker now offers unlimited access to its Hardened Images catalog, making secure, CVE-free base images affordable for every team. These images are built from source, signed, and continuously patched for enterprise assurance.
Expanding Docker Hardened Images: Secure Helm Charts for Deployments
Deploy Docker Hardened Images to Kubernetes with Helm Charts in the DHI Catalog, now in invite-only beta. Charts inherit DHI’s near-zero CVEs, SLSA Level 3 builds, and automated CVE patching, so your workloads stay secure, compliant, and production-ready, without slowing down developer velocity.
Docker and CNCF: Partnering to Power the Future of Open Source
We’re announcing an official partnership between Docker and the CNCF to strengthen the open-source ecosystem. The partnership gives CNCF projects access to Docker’s Sponsored Open Source Program, with unlimited image pulls, increased discoverability, and streamlined support through Docker’s open-source channels.
Docker Model Runner General Availability
Docker Model Runner is officially GA: a container-native way to run and share AI models locally with GPU and OCI support, and more features on the way.
MCP Horror Stories: The Drive-By Localhost Breach
The MCP Horror Stories series continues with a look at CVE-2025-49596, an exploit that turns MCP Inspector into a weapon for compromising local developer environments. Learn how Docker’s security model helps defend against this new class of attacks.
Docker News
Introducing the Docker Premium Support and TAM service
Docker’s new Premium Support and Technical Account Manager service deliver 24/7 coverage, priority SLAs, and expert guidance across the Docker ecosystem, available to Docker Business and DHI customers.
Silent Component Updates & Redesigned Update Experience
Automatic updates for Docker Compose, Docker Scout, Ask Gordon, and Model Runner, plus a new update experience and enhanced admin controls in the latest Docker Desktop (4.46).
Docker Acquisition of MCP Defender Helps Meet Challenges of Securing the Agentic Future
Docker acquires MCP Defender to secure agentic AI. Expect runtime monitoring, policy enforcement, and real-time threat detection across AI tooling.
Beyond Containers: llama.cpp Now Pulls GGUF Models Directly from Docker Hub
Learn how llama.cpp is using Docker Hub as a powerful, versioned, and centralized repository for your AI models.
Dive Deep: Build, Test, and Scale AI Agents with Docker
From Concept to Production
See how developers are moving from AI experimentation to deployment with Docker.
- From Shell Scripts to Science Agents: How AI Agents Are Transforming Research Workflows – See how AI science agents automate literature search, ADMET, and analysis in containerized, reproducible workflows from laptop to cloud with Docker.
- The Nine Rules of AI PoC Success: How to Build Demos That Actually Ship – Build AI POCs that ship. Learn how to move from demo to dependable deployment with remote workflows, small starts, and production-ready design.
Building AI Agents with Docker
Learn how Docker powers agent development across Sema4.ai, cagent, Cerebras, and Offload + Unsloth.
Define, secure, and share AI agents with Docker Compose, MCP Gateway, and OCI workflows, then fine-tune and optimize models locally with Docker Offload and Unsloth for efficient, GPU-accelerated performance.
Testing and Evaluation
Run, Test, and Evaluate Models and MCP Locally with Docker + Promptfoo — Learn how Docker and Promptfoo help developers compare models, evaluate MCP servers, and red-team LLMs locally to strengthen AI workflows.
Securing AI Workflows
MCP Security: A Developer’s Guide — The Model Context Protocol (MCP) lets AI agents connect to tools and APIs, but that flexibility introduces new security risks. This guide explains how Docker’s containerized servers, policy gateway, and curated catalog make MCP workflows safe by design.
Watch: AI Guide to the Galaxy
Docker’s video series, hosted by Oleg Šelajev, Staff Community Success Manager at Docker, features conversations with Docker Principal Engineers on how to build and run AI applications, from local LLMs to secure, production-grade agents.
- Episode 4: Run Local LLMs Smarter Minions Protocol + Docker — See how Minions orchestrates on-device LLMs through the cloud for private, efficient AI workflows using Docker AI and Compose.
- Episode 5: Build Declarative AI Agents with cagent — Define and run AI agents in YAML, connect to MCP servers, and share them as OCI artifacts with Docker’s open-source cagent.
Around the Community
Connect with Docker communities, online and in person, to learn, share, and stay up to date with the latest in containerization. Visit the Community Hub to explore forums, local meetups, events, and more. Happening this month:
- Docker.sock permission errors on Debian Trixie and Proxmox
Developers are troubleshooting permission issues accessing docker.sock after upgrading to Debian Trixie, especially in LXC and Proxmox environments. Several community members share workarounds and permission fixes. - iptables chains not created on Ubuntu 24.04.3
A lively discussion about how Docker sets up firewall rules on Linux. Users dig into why iptables chains may not appear by default and how Docker Desktop handles port forwarding.
On the Calendar
Meet our Product and Engineering teams at leading tech conferences worldwide, where they share expertise, explore Docker’s latest advancements, and collaborate with the global tech community to shape the future of innovation.
- Open Source SecurityCon — Atlanta, GA US — November 10
Visit the Docker booth to learn how we are simplifying and strengthening container security and securing the software supply chain. - AWS re:Invent — Las Vegas, NV US — December 1-5
Discover Docker AI at Booth #1819 with demos, insights, and a sneak peek at what’s next.
Can’t make it in person? Catch a Docker webinar online!
- Oct 23, 2025 | 8 am PST: Mastering MCP in 30 Minutes: Boost Your Dev Workflows
- If you couldn’t join our recent live webinar, AI Webinar with Docker – Going Beyond the Chatbot with event-driven agents, don’t worry, the on-demand recording is coming soon. In the meantime, catch up on other past sessions in the library at your convenience.
That’s a Wrap
Thank you for reading Docker Navigator! If you enjoyed this issue, please share it with your friends so they can subscribe now.
Got any feedback or suggestions for our next issue? Send comments to newsletter@docker.com.