Dockerhub scans some of the images. You can see the results, e.g. docker/compose. Might be interesting to know what the vulnerabilities are I suppose, but, well, less red would be good.
Don's Blog Technology run (almost) amuck
login | 
(RSS)|Create Account|Update email pref
In the lower right you might see a red bell / push notification indicator, click it to enable push notifications (or link below this box).
See the previous archives
(RSS)|Create Account|Update email pref In the lower right you might see a red bell / push notification indicator, click it to enable push notifications (or link below this box).
See the previous archives
- on The LED bulb project: an autopsy on some failuresfree to good home. two $25 LED corn cob lights. Lightly used. Some bugs. May have missing led(s). Know a
- on The LED bulb project: an autopsy on some failuresI've fixed a number of dead LED back-lit TV's found on Kijiji and through friends. I guess it's so much
- on Gitlab via the API: prepare a repo with automatic deploy keys and protected branches/tagsi don't really understand what you are asking? the `protect` means that it can't be read.
- on Gitlab via the API: prepare a repo with automatic deploy keys and protected branches/tagscan you let me know how to protect a tag and allow it only for a group instead of maintainer.
- Keep your certificates young and fresh
- We are all-in on the TLS: the HSTS preload
- Git ransomware: beware the misdirection
- Covert Exfiltration, Cloud Native
- Moving into a new (cloud) neighbourhood? Check its reputation!
- Docker Hub Hack: Secure Your Supply Chain
- That’s the kind of password an idiot uses on luggage: cloud security
- The naked cloud: elasticsearch is stretch but doesn’t cover security
- Security of the upstream code, and, the importance of the egress firewall
- Static Application Security Testing (SAST) and Nodejs (with Gitlab CI)
Leave a Reply