Container Security First Steps: Image and Registry Scanning

Trend Micro -

Companies are adopting -first development to improve application deployment speed and cohesion, and have become an integral part of this modern . Similar to a hardware technicians toolbox, containers hold all the dependencies () the software needs to run smoothly in different computing environments without hitches.

Containers are built from images, which are essentially a file that zips together all the components needed to run an application—code, configuration files, libraries (including specific versions), environment variables, and more.

Great technologies like Docker and Kubernetes facilitate containerization and help drive adoption. While Docker runs on a single node and helps build and manage images, Kubernetes orchestrates, enabling scaling and efficiently distributing containers across a cluster of nodes.

Container image registries store container images privately (within an organization) or publically (using open source platforms, like or Docker Hub). Docker Hub contains many base images to help you build your own custom images (such as nginx, Node, Alpine, and much more). It also includes a repository of custom images created by others, you can pull, use, and improve. Lastly, the adoption of public container images helps drive innovation.

OpenShift Container Registry (OCR) is one example of a private container registry that runs

Read More: https://www.trendmicro.com/en_us/devops/21/e/container-security-first-steps-image-and-registry-scanning.html