What does it take to build secure, minimal container images? Why is having this important for your underlying software stack? Dan Lorenc from Chainguard is here to walk us through Chainguard’s approach to building secure, minimal container images for popular open source software applications, languages, and libraries and how this approach helps developers get back to doing what they do best–BUILD–by removing the pesty pain of CVEs, laggy software updates and patches and more. Also now available on Docker Hub. Originally from live stream 261 - Audio Podcast version - 🗞️ Sign up for my weekly newsletter for the latest on upcoming guests and what I'm releasing: Show Links ========= Dan Lorenc ========== Nirmal Mehta ============ @nirmal Bret Fisher ========= Join my Community 🤜🤛 ================ 💌 Weekly newsletter on upcoming guests and stuff I'm working on: 💬 Join the discussion on our Discord chat server 👨‍🏫 Coupons for my Docker and Kubernetes courses 🎙️ Podcast of this show Chapters ======== 00:00 Introduction 04:18 Introducing Dan Lorenc 04:41 Dan's Take on the XZ Hack 14:22 Chainguard Distro Creation 20:44 Chainguard in Docker Hub Announcement 23:49 Free Images vs Private Images 25:50 Zero CVE Approach 27:56 Ways to Reduce Attack Surfaces 39:19 Chainguard Academy 40:32 Real Time Antivirus Malware Scanner 43:15 Google Distro Lists Worth Using 45:19 Chainguard for Buildpacks 45:43 SLSA 55:31 What's Next for Chainguard? 56:15 Getting Started with Chainguard