Latest updates for Docker Hardened Images

Fresh curated links around Docker Hardened Images are collected here so marketers can spot useful updates and turn timely ideas into posts faster.

Recent items include:

  • Docker Hardened Images Are Free Now — Here's What You Still Need to Build
  • Hardened Images Explained: Fewer CVEs, Smaller Attack Surface
  • Docker Hardened Images enhanced vulnerability scanning with Docker and Aikido

Post angles to try

Share the most useful takeaway for your audience.
Turn one article into a quick practical checklist.
Ask your audience how this shift affects their work.
Turn angles into scheduled posts

Fresh articles and ideas

Recent curated links from global sources. Generate one free draft from any story, then use SocialBu to schedule and refine your content calendar.

dzone.com /1 month ago

Docker Hardened Images Are Free Now — Here's What You Still Need to Build

The Problem Isn't the Image Hardened container images are no longer niche. Docker open-sourced major portions of the tooling behind Docker Hardened Images under Apache 2.0 in late...

Read source
docker.com /1 month ago

Hardened Images Explained: Fewer CVEs, Smaller Attack Surface

When security teams scan their container environments for the first time, they often discover hundreds of known vulnerabilities, and almost none of them trace back to application c...

Read source
docker.com /1 month ago

Docker Hardened Images enhanced vulnerability scanning with Docker and Aikido

Aikido now scans Docker Hardened Images (DHI) with built-in VEX support. Vulnerabilities that Docker has verified as non-exploitable drop out of the queue automatically, so develop...

Read source
docker.com /1 month ago

Mitigating CVE-2026-31431 (“Copy Fail”) in Docker Engine

CVE-2026-31431 is a Linux kernel vulnerability that was recently disclosed. This CVE does not compromise Docker infrastructure. That said, Docker Engine's default profiles prior to...

Read source
habr.com /1 month ago

Безопасный Docker с torque

torqueБольшинство советов по сборке Docker заканчиваются на порядке слоёв: сначала копируйте манифесты зависимостей, запускайте менеджер пакетов, затем копируйте остальной исходный...

Read source
cncf.io /2 weeks ago

Security Profiles Operator v1: Stable APIs, Security Hardened, and Shaping Upstream Kubernetes

Linux provides powerful kernel-level security mechanisms, seccomp, SELinux, and AppArmor, that restrict what containerized workloads can do. Each uses profiles that define permitte...

Read source
habr.com /1 month ago

Best Practices по Dockerfile: от базового образа и кеша до SBOM, Cosign и CI/CD

Статья получилась большой: практик много, и каждая из них важна по-своему. Я собрал её как набор best practices: не все пункты нужны каждому проекту, но почти каждый пункт однажды...

Read source
docker.com /1 month ago

5 Software Supply Chain Security Best Practices for Development Teams

Understanding software supply chain security is one thing. Putting it into practice across a real pipeline, with real deadlines and real constraints, is another. Most organizations...

Read source
docker.com /1 month ago

Docker joins the Athena coalition: a cross-industry collaboration for supply chain security

The obvious takeaway from 2026's biggest incidents is that attackers are increasingly using AI to move fast. Docker's CISO, Mark Lechner, wrote about this shift and what every engi...

Read source
docker.com /2 weeks ago

How to Generate an SBOM for Container Workflows

Learn when, where, and how to generate SBOMs for container images. Covers build-time vs. post-build approaches, quality criteria, and CI/CD integration.

Read source
vmblog.com /3 weeks ago

Minimus opens entire catalog of secure container images in wake of rising AI threats

Minimus goes further than industry peers with world's largest selection of free, ~0 CVE compliant container images, delivering both accessibility

Read source
astgl.com /2 weeks ago

Apple Container vs Docker: When to Use Which on Apple Silicon

<a class="image-link image2 is-viewable-img" target="_blank" href="https://substackcdn.com/image/fetch/$s_!fSjI!,f_auto,q_auto:good,fl_progressive:steep...

Read source
sdtimes.com /1 month ago

Survey: Spring Developers Have a Blindspot When It Comes to Container Security

SAN JOSE — A survey from BellSoft found that Spring developers don’t know their Dockerfiles affect their security posture, aren’t using hardened images and can’t name their complia...

Read source
docker.com /3 weeks ago

EU Cyber Resilience Act: Overview, Requirements, and Timelines

Learn what the EU Cyber Resilience Act requires, including SBOM mandates, vulnerability reporting, and compliance deadlines for container teams.

Read source
docker.com /4 weeks ago

Docker Content Trust: Retirement and Migration Guidance

TLDR: Docker Content Trust (DCT) and the Notary v1 service at notary.docker.io are being fully retired (first announced in July of 2025). This blog explains what is changing, who i...

Read source
cnx-software.com /1 month ago

Docker for Microcontrollers? AkiraOS combines Zephyr RTOS with WebAssembly (WASM) applications

AkiraOS is a Zephyr-based embedded OS that runs sandboxed WebAssembly applications on microcontrollers and lets users deploy and update firmware OTA without reflashing. In other wo...

Read source
docker.com /2 weeks ago

Why AI Agents Need Isolation

Learn why AI agent isolation matters, how Docker SBX enables safer AI workflows, and how Sandbox Kits help. Written by Docker Captain Karan Verma.

Read source
docker.com /1 month ago

Coding Agent Horror Stories: The Security Crisis Threatening Developer Infrastructure

This is issue 1 of a new series called Coding Agent Horror Stories where we examine critical security failures in the AI coding agent ecosystem and how Docker Sandboxes provide ent...

Read source
dev.to /1 week ago

AWS Lightsail Instance for Docker

This chapter guides you through setting up an Ubuntu Lightsail instance pre-configured for Docker, enabling you to deploy and manage containers for WordPress and MySQL Server quick...

Read source
phoronix.com /1 week ago

Linux 7.2-rc2 BPF Code Being Hardened Against JIT Spraying Attacks

Some post-merge-window code changes merged overnight ahead of Linux 7.2-rc2 this weekend is hardening the kernel's BPF code against JIT spraying attacks...

Read source
dev.to /1 month ago

Deploying Passbolt Team Password Manager on Ubuntu 24.04

Passbolt CE is an open-source, end-to-end encrypted password manager built for teams, with browser extensions and a web interface for secure credential sharing. This guide deploys...

Read source
dev.to /1 month ago

Deploying Bitwarden Password Management Vault on Ubuntu 24.04

Bitwarden is an open-source, end-to-end encrypted password manager. The official self-hosted server runs as a stack of Docker containers and ships with an interactive installer tha...

Read source
dzone.com /2 weeks ago

Building Production-Safe Agentic Remediation With Docker MCP Gateway: Lessons From 43% to 100% Accuracy

Our first version was wrong 57% of the time.  Not because the AI model couldn't identify Docker container failure scenarios—it usually could. The failures occurred at the decision...

Read source
docker.com /1 month ago

How to Secure AI Agents: A Practical Overview for Development Teams

In our State of Agentic AI report, 45% of organizations said they struggle to ensure the tools their agents use are secure and enterprise-ready. That number reflects a broader real...

Read source

Turn fresh research into a full content calendar

Use SocialBu to discover ideas, generate post drafts, and schedule them across your social channels.

Sources covering Docker Hardened Images

feeds.dzone.com

Recent coverage from public sources
Public source

phoronix.com

Recent coverage from public sources
Public source

blogs.vmware.com

Recent coverage from public sources
Public source

dev.to

Recent coverage from public sources
Public source

habr.com

Recent coverage from public sources
Public source

sdtimes.com

Recent coverage from public sources
Public source