O'Reilly logo

TypeScript Microservices by Parth Ghiya

Stay ahead with the world's most comprehensive technology and business learning platform.

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, tutorials, and more.

Start Free Trial

No credit card required

Securing container builds and standardizing deployments

This phase focuses on applying control to developer workflows and continuous integration and deployment pipelines to mitigate the security issues that may occur after containers have been launched. Here is the standard set of practices:

  • Apply a single responsibility rule even at the container level. A container image should only have the essential software and application code needed to minimize the attack surface of every container launched from the image.
  • Images should be scanned for known vulnerabilities and exposures. There is a common vulnerabilities and exposure database (just like the application level) on which we can validate the image (https://github.com/arminc/clair-scanner ...

With Safari, you learn the way you learn best. Get unlimited access to videos, live online training, learning paths, books, interactive tutorials, and more.

Start Free Trial

No credit card required