Containers fueled by open source software have become the de facto way for software development teams to package and deploy modern applications and services. But that robust foundation is at risk from vulnerabilities in the software supply chain, as many base container images in popular repositories are built from untrustworthy sources or updated infrequently.
Although a market for hardened container images has emerged, these base images contain only a fraction of what’s required to run most applications.
Security and DevOps teams need more than a secure starting point; they need to know that their container requirements, from the operating system level to app dependencies, are assembled regularly, from a known source, and free from CVEs.
The dream is to use end-to-end, vulnerability-free containers without burdening teams with the manual work usually required to get there.
In this on-demand webinar, Pete Garcin and Evan Prowse of ActiveState joined TNS Host Chris Pirillo to explore the advantages and risks of using open source in containers and how you can close critical gaps before they go into production and keep them closed for good.
What you’ll learn:
- How to secure your containers from the OS level to app dependencies without burdening your development team.
- How to proactively keep your containers up to date and vulnerability-free.
- How to manage the lifecycle of open source software across your business and stay ahead of future threats.
Register for this on-demand webinar.
