Docker Hub images buggy and vulnerable, say researchers Docker Hub users are playing Russian Roulette with Heartbleed, Poodle and Shellshock, according to an analysis of a bunch of images by newly-launched outfit BanyanOps. The outfit is using the research to bring itself out of stealth-mode, apparently: the company only Tweeted “Hello World” on May 1. Its claim, blogged here, is …
It's going to come down to the IT equivalent of supply chain management making sure of the provenance of each element of the container, current patching levels for those elements, and noting incompatibilities that are reported to the developers. Further, every developer is going to have to spin up a current image and test their modifications although we have automatic building and testing tools, so it shouldn't be impossible to restructure the processes for containers. Difficult I'll buy.
Like many an admin I have my fairly hefty collections of images here and keeping them spruced up is a headache. Since the images rarely change, individually, I tweak them during the full system backup window. Watching the backups or building images. Sheesh. Some Sunday!
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2025
