Source: thenewstack.io
Containers Can Be Both Leaky and Risky — But That’s Always Been TrueCategory: Software, Business, Security, Kubernetes, containerization
Cue the leaky container jokes — security startup Prevasio posted a report earlier this month that should give you plenty of material. The company analyzed about 4 million public Docker container images hosted on Docker Hub and found that more than half (51%) had critical vulnerabilities.
They agree that there are many vulnerabilities in Docker container images, but that it’s been common knowledge for years and that the results of this report need more context.
The ease of literally anyone uploading images to Docker Hub and the lack of a requirement to clean up older images reduces the significance of this issue significantly,” he said.
Shevchenko said it lies with both Docker and its users, noting that a container “is like a mini OS with all the dependencies prepackaged in it.
They agree that there are many vulnerabilities in Docker container images, but that it’s been common knowledge for years and that the results of this report need more context.
The ease of literally anyone uploading images to Docker Hub and the lack of a requirement to clean up older images reduces the significance of this issue significantly,” he said.
Shevchenko said it lies with both Docker and its users, noting that a container “is like a mini OS with all the dependencies prepackaged in it.
Related Articles
Community Partners
DevOps Careers