{"id":17062913,"url":"https://github.com/bretfisher/container-security-steps","last_synced_at":"2026-03-06T09:34:00.629Z","repository":{"id":65616616,"uuid":"595827485","full_name":"BretFisher/container-security-steps","owner":"BretFisher","description":"Docker and Kubernetes security steps to help you create, build, test, and run safer in containers","archived":false,"fork":false,"pushed_at":"2023-01-31T22:37:34.000Z","size":2,"stargazers_count":27,"open_issues_count":0,"forks_count":0,"subscribers_count":6,"default_branch":"main","last_synced_at":"2025-06-22T04:53:13.411Z","etag":null,"topics":["devops","devsecops","docker","kubernetes","security-automation","security-tools","supply-chain-security"],"latest_commit_sha":null,"homepage":"","language":null,"has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/BretFisher.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2023-01-31T22:17:08.000Z","updated_at":"2025-03-13T00:23:50.000Z","dependencies_parsed_at":"2023-02-16T23:46:01.306Z","dependency_job_id":null,"html_url":"https://github.com/BretFisher/container-security-steps","commit_stats":null,"previous_names":[],"tags_count":0,"template":false,"template_full_name":null,"purl":"pkg:github/BretFisher/container-security-steps","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/BretFisher%2Fcontainer-security-steps","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/BretFisher%2Fcontainer-security-steps/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/BretFisher%2Fcontainer-security-steps/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/BretFisher%2Fcontainer-security-steps/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/BretFisher","download_url":"https://codeload.github.com/BretFisher/container-security-steps/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/BretFisher%2Fcontainer-security-steps/sbom","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":261927623,"owners_count":23231380,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["devops","devsecops","docker","kubernetes","security-automation","security-tools","supply-chain-security"],"created_at":"2024-10-14T10:51:03.245Z","updated_at":"2026-03-06T09:33:55.561Z","avatar_url":"https://github.com/BretFisher.png","language":null,"readme":"# Docker and Kubernetes image and container security *better* practices\n\nA talk on tools and processes that will improve your security posture. Meant for mere mortals. Achievable by those doing *solo DevOps*.\n\nFirst given at [Civo Navigate 2023](https://www.civo.com/navigate) with the title \"Real-world container \u0026 image security: Present and future.\"\n\n## This repo\n\nFORTHCOMING AFTER CIVO NAVIGATE IN FEBUARY 2023. Get on [my newsletter](https://www.bretfisher.com/newsletter) to get my updates on this and everything I create.\n\n## History of my rants about securing your containers (and code)\n\n* Starting in 2018, I made my \"top 10\" security recommendations for people starting in Docker/Kubernetes (https://github.com/BretFisher/ama/discussions/150). It's had multiple updates over the years.\n* [My DockerCon 2022 talk](https://github.com/bretfisher/nodejs-rocks-in-docker) mainly was a rant about default base images for languages. I picked Node.js. I tried to be nice.\n* This repo tries to sum up this topic in 2023 for the \"average\" DevOps engineer, where a lot's happening in this space.\n\n©️ Bret Fisher. [MIT License](./LICENSE). Attribution appreciated! Made with ❤️ in Virginia.\n","funding_links":[],"categories":[],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbretfisher%2Fcontainer-security-steps","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fbretfisher%2Fcontainer-security-steps","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbretfisher%2Fcontainer-security-steps/lists"}