Secure, Custom Container Images
From the base layer to app dependencies, ActiveState’s secure containers offer complete customization, full provenance, and none of the patching chaos.








Stop managing third-party code. Start running secure containers.
Container security requires more than a secure base image. Enable DevOps and Security teams with end-to-end, vulnerability-free containers and free your developers from the manual work typically needed to get there.
- Spend more time building: Stop the costly cycle of patching and remediation and spend more development cycles writing business-critical code.
- Stay secure: Curate a secure, regularly updated open-source repository to improve your security posture and create a scalable path to production for your applications.
- Simplify compliance: Use secure, custom containers to easily achieve and maintain complex compliance requirements without lengthy audit cycles.
“I don’t have to think too much about security and the complications anymore because ActiveState does it for me.”
– Stacy Leon, Sr. Technical Specialist
Configure once. Trust forever.
Customize without compromise
Prevent vulnerable packages from entering your environment. Use over 40 million secure components to customize a container image that mitigates vulnerabilities across every layer of your container. You’ll get your container back with low-to-no CVEs, rebuilt from the base OS through every app dependency.
Battle tested build automation
Offload the process of building and maintaining custom images. Inherit the benefits of a secure, automated SLSA-3 build system to perform image customization with a standard remediation SLA of 7 days for critical CVEs and 14 days for all others.
Secure base images, rebuilt daily
Plug-in-and-play minimal, secure container images slot right into your CI/CD pipeline and provide a secure foundation for customization. Each image includes a signed SBOM and is rebuilt nightly to secure your workloads.
Build custom containers, without the chaos
Open source in containers doesn’t have to mean open risk—Leverage ActiveState’s leading component catalog to build your custom container today.
How it works:
- Start with a secure, ActiveState container image
- Confirm your application needs and dependencies
- Quickly receive a secure, trial container for evaluation
- Receive a fully customized secure container image ready for production
FAQs
What makes ActiveState containers more secure than standard base images?
ActiveState container images are assembled entirely from source to ensure low-to-no CVEs right out of the box.
Each image is rebuilt nightly and includes a signed SBOM and attestation.
Can I customize the container to fit my specific tech stack?
Yes. Any of our free containers can be further customized in collaboration with our Customer Success team. Customization leverages ActiveState’s catalog of 40M+ secure components, ensuring a secure container from the ground up.
How fast can I get a custom container back?
In most cases, your secure container will be delivered via a private repository for evaluation within a few business days. Specific timelines will be scoped based on your application requirements.
Do ActiveState containers help with compliance?
Absolutely. Available on demand, ActiveState container images can be further hardened to support strict compliance requirements (e.g., SOC 2, FedRAMP, etc.).
Explore more resources
Why VMaaS Is Important for Your Enterprise Cybersecurity Strategy
ActiveState’s VMaaS solution delivers the last mile of vulnerability management through risk prioritization, precision remediation, and expert guidance. Here’s why it’s important to your enterprise cybersecurity strategy.
Hardened Container Security Best Practices
It’s no secret that containers enable you to deploy products rapidly in scalable and consistent environments, however they also can introduce new vulnerabilities across the software supply chain. In this whitepaper, we explore common container security challenges and best practices to overcome them.
Chainguard vs ActiveState Hardened Containers
Learn how you can decrease Mean Time To Remediation (MTTR) by outsourcing the responsibility of securing your containers to a third party.