Docker reflects on nearly one year of Docker Hardened Images (DHI), highlighting 500k daily pulls, 2,000+ hardened images, and over a million regular builds. The post explains the philosophy behind key decisions: making hardened images free and open source under Apache 2.0, supporting multiple distros (Alpine and Debian)
Table of contents
We made hardened images widely accessible so every team could raise their security baselineWe built multi-distro so adoption is drop-in, and does not impose a migration tax on youWe build every system package from source, for the distros you already useWe didn’t stop at near-zero CVEs, we made every image independently verifiableWhat to ask your vendor, and what we found when we asked ourselves the same questionsWe took on the parts of supply chain security others leave behindCome join the movementSort: