Tokenless

Docker

State of the Art of Container Security • Adrian Mouat & Charles Humble

State of the Art of Container Security • Adrian Mouat & Charles Humble

Adrian Mouat of Chainguard delves into container security, highlighting the flaws of traditional Linux distributions in modern, immutable environments. He explains Chainguard's approach of using 'distroless' images built from source with their Wolfi OS to achieve near-zero CVEs. The discussion covers the importance of replacing rather than updating containers, the roles of SBOMs and attestations, and key lessons from major supply chain attacks like the XZ Utils backdoor.

Learn Docker in a Month of Lunches • Elton Stoneman & Bret Fisher • GOTO 2026

Learn Docker in a Month of Lunches • Elton Stoneman & Bret Fisher • GOTO 2026

Docker educators Bret Fisher and Elton Stoneman discuss the second edition of Stoneman's book, "Learn Docker in a Month of Lunches". They explore why Docker fundamentals remain crucial in a Kubernetes-dominated world, the evolution of the container ecosystem over the past five years, and the key skills that differentiate a Docker expert from a beginner, such as multi-platform builds, security, and configuration management.

State of the Art of Container Security • Adrian Mouat & Charles Humble • GOTO 2026

State of the Art of Container Security • Adrian Mouat & Charles Humble • GOTO 2026

Adrian Mouat from Chainguard discusses the evolution of container security, highlighting the flaws of traditional Linux distributions for modern container workflows. He explains how Chainguard's approach of building minimal, 'distroless' images from source using Wolfi addresses the noise from vulnerability scanners, and delves into the importance of SBOMs, attestations, and a 'defense in depth' strategy, contextualized by recent major security incidents like the XZ Utils backdoor and Shai-hulud attacks.