Technical Community Advocate @ Chainguard
Adrian has been involved with containers from the early days of Docker and authored the O’Reilly book “Using Docker”.
He works at Chainguard whose mission is to make the software lifecycle secure by default. His current focus is on improving the standard of security and provenance guarantees in container images.
Have you ever run a vulnerability scanner? Were you shocked by the results? Vulnerabilities are both a security risk and a giant time suck for anyone tasked with investigating them, yet it's not unusual to find dozens or even hundreds of vulnerabilities in commonly-used images.
But it doesn't have to be this way!
This talk will go into details about how to dramatically reduce the vulnerability count in your images. We'll talk about the importance of reducing complexity, keeping software up-to-date and why Chainguard built a new Linux distribution called Wolfi to help in this quest. We'll also delve into the murky world of security advisories to understand why scanners sometimes report false positive vulnerabilities and what can be done about them.
Join Adrian and find out how to get your vulnerability count down without sacrificing functionality or velocity.