Skip to content
My Docs

Secure DevOps

Docker Image Security

Section titled “Docker Image Security”

Recommendations from How to handle security updates to containers OSes? : devops Reddit

  • Use scratch image with just app binaries
  • Periodically update the Dockerfile with base image or use latest
    • Option: Manage the base image yourself
    • Option: Instead of latest tag, tag releases and upgrade them gradually using CICD / pull requests

See Also

Section titled “See Also”