I believe it’s important to start with a premise:
In this article, I’ll talk about a product/service built and offered by my current employer, SIGHUP.
No one from my company has asked me to publish this blog post here; these are my honest opinions about Secure Containers.
Secure Containers is a paid service built by SIGHUP that provides secure, hardened, and updated container base images.
Developers working with containers and images now enjoy several advantages compared to the past, such as standardization, automation, and faster release times.
One of the most underestimated aspects of working with containers is the need to start from base images that must be chosen carefully to avoid issues such as:
- Bugs
- CVEs
- Outdated images
- Malicious code
It’s clear that having constantly updated base images with the fewest possible CVEs is crucial.
Any problems in the base image will be replicated in your container, which could then be running in production environments.
Keeping base images updated and secure is a significant responsibility, often requiring dedicated attention from someone in the company—taking them away from other tasks.
This is where the Secure Containers service can help, offering the following advantages:
- Comprehensive container catalog
- Proactively patched against all known CVEs and vulnerabilities
- Prometheus-friendly images
- Notifications, support status, and planned obsolescence
- Support and clear SLAs
If you’re interested in Secure Containers, please visit the dedicated site to find more information and FAQs.
You’ll also have the opportunity to enable a free trial of the service.
If you’d like to read more about the security of container base images,
check out this article where I’ll explore the topic in greater depth.