Docker

DockSec: Open-source AI-powered Docker security scanner

containers, Docker, Don't miss, GitHub, Hot stuff, News, open source, OWASP, scanner, software /

DockSec: Open-source AI-powered Docker security scanner 2026-06-08 at 13:09 By Mirko Zorz DockSec is an OWASP Incubator Project that combines three container security scanners with a language-model layer for explanation and remediation. Created by Advait Patel, the Python tool runs Trivy, Hadolint, and Docker Scout against a developer’s Dockerfile and image, correlates the findings, returns […]

DockSec: Open-source AI-powered Docker security scanner Read More »

Open Source DockSec Uses AI to Cut Through Vulnerability Noise in Docker Images

Docker, Vulnerabilities, vulnerability /

Open Source DockSec Uses AI to Cut Through Vulnerability Noise in Docker Images 2026-05-26 at 13:56 By Mike Lennon DockSec, an OWASP incubator project, correlates findings from multiple container security scanners and uses AI to generate plain-English remediation guidance and exact Dockerfile fixes. The post Open Source DockSec Uses AI to Cut Through Vulnerability Noise

Open Source DockSec Uses AI to Cut Through Vulnerability Noise in Docker Images Read More »

NanoCo lands $12 million seed funding, launches enterprise assistant built on NanoClaw

Docker, Industry news /

NanoCo lands $12 million seed funding, launches enterprise assistant built on NanoClaw 2026-05-20 at 17:01 By Sinisa Markovic NanoCo announced a $12 million seed round, alongside the commercial launch of a professional assistant built on its open-source agent framework NanoClaw. Valley Capital Partners led the round. Docker, Vercel, monday.com, Slow Ventures, Clutch Capital, Factorial Capital,

NanoCo lands $12 million seed funding, launches enterprise assistant built on NanoClaw Read More »

DockerDash Flaw in Docker AI Assistant Leads to RCE, Data Theft

AI, Artificial Intelligence, Ask Gordon, Docker, Vulnerabilities, vulnerability /

DockerDash Flaw in Docker AI Assistant Leads to RCE, Data Theft 2026-02-04 at 13:48 By Ionut Arghire The critical vulnerability exists in the contextual trust in MCP Gateway architecture, as instructions are passed without validation. The post DockerDash Flaw in Docker AI Assistant Leads to RCE, Data Theft appeared first on SecurityWeek. This article is

DockerDash Flaw in Docker AI Assistant Leads to RCE, Data Theft Read More »

Docker makes hardened images free open and transparent for everyone

containers, DevSecOps, Docker, Don't miss, News, open source /

Docker makes hardened images free open and transparent for everyone 2025-12-22 at 15:09 By Sinisa Markovic Docker has made its open source Docker Hardened Images project available at no cost for every developer and organization. The catalog contains more than 1,000 container images built on open source distributions such as Debian and Alpine and is

Docker makes hardened images free open and transparent for everyone Read More »

Docker Makes 1,000 Hardened Images Free and Open Source

cloud security, container, DHI, Docker, images /

Docker Makes 1,000 Hardened Images Free and Open Source 2025-12-19 at 16:16 By Eduard Kovacs Millions of developers can now use the secure, production-ready images made by Docker. The post Docker Makes 1,000 Hardened Images Free and Open Source appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Docker Makes 1,000 Hardened Images Free and Open Source Read More »

Exposed Docker APIs Likely Exploited to Build Botnet

botnet, Docker, Malware & Threats /

Exposed Docker APIs Likely Exploited to Build Botnet 2025-09-09 at 17:07 By Ionut Arghire Hackers mount the host’s file system into fresh containers, fetch malicious scripts over the Tor network, and block access to the Docker API. The post Exposed Docker APIs Likely Exploited to Build Botnet appeared first on SecurityWeek. This article is an

Exposed Docker APIs Likely Exploited to Build Botnet Read More »

Docker Desktop Vulnerability Leads to Host Compromise

cloud security, Docker, vulnerability /

Docker Desktop Vulnerability Leads to Host Compromise 2025-08-26 at 14:34 By Ionut Arghire A critical vulnerability in Docker Desktop allows attackers to modify the filesystem of Windows hosts to become administrators. The post Docker Desktop Vulnerability Leads to Host Compromise appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Docker Desktop Vulnerability Leads to Host Compromise Read More »

Behind the code: How developers work in 2025

Artificial Intelligence, containers, Docker, LLMs, machine learning, microservices, News, programming, report, survey /

Behind the code: How developers work in 2025 2025-07-11 at 13:01 By Anamarija Pogorelec How are developers working in 2025? Docker surveyed over 4,500 people to find out, and the answers are a mix of progress and ongoing pain points. AI is gaining ground but still unevenly used. Security is now baked into everyday workflows.

Behind the code: How developers work in 2025 Read More »

DockerSpy: Search for images on Docker Hub, extract sensitive information

containers, Docker, Don't miss, GitHub, Hot stuff, News, open source, software /

DockerSpy: Search for images on Docker Hub, extract sensitive information 2024-09-11 at 07:31 By Mirko Zorz DockerSpy scans Docker Hub for images and retrieves sensitive information, including authentication secrets, private keys, and other confidential data. “DockerSpy was created to address the growing concern of sensitive data leaks within Docker images, especially those publicly available on

DockerSpy: Search for images on Docker Hub, extract sensitive information Read More »

RustScan: Open-source port scanner

Docker, Don't miss, GitHub, Hot stuff, News, open source, penetration testing, scanning, software /

RustScan: Open-source port scanner 2024-08-07 at 07:01 By Help Net Security RustScan is an open-source port scanner designed for speed and versatility. It combines a sleek interface with the power to adapt and improve over time. With RustScan’s Adaptive Learning, the tool continually optimizes its performance, making it the most efficient port scanner available. Discover

RustScan: Open-source port scanner Read More »

Docker fixes critical auth bypass flaw, again (CVE-2024-41110)

containers, CVE, Docker, Don't miss, Hot stuff, News, security update, virtualization, vulnerability /

Docker fixes critical auth bypass flaw, again (CVE-2024-41110) 2024-07-25 at 15:01 By Zeljka Zorz A critical-severity Docker Engine vulnerability (CVE-2024-41110) may be exploited by attackers to bypass authorization plugins (AuthZ) via specially crafted API request, allowing them to perform unauthorized actions, including privilege escalation. About CVE-2024-41110 CVE-2024-41110 is a vulnerability that can be exploited remotely,

Docker fixes critical auth bypass flaw, again (CVE-2024-41110) Read More »

Docker Patches Critical AuthZ Plugin Bypass Vulnerability Dating Back to 2018

AuthZ bypass, cloud security, CVE-2024-41110, CVSS 10, Docker, Docker Engine, Vulnerabilities /

Docker Patches Critical AuthZ Plugin Bypass Vulnerability Dating Back to 2018 2024-07-25 at 02:31 By Ryan Naraine The vulnerability, tagged as CVE-2024-41110 with a CVSS severity score of 10/10, was originally found and fixed in 2018. The post Docker Patches Critical AuthZ Plugin Bypass Vulnerability Dating Back to 2018 appeared first on SecurityWeek. This article

Docker Patches Critical AuthZ Plugin Bypass Vulnerability Dating Back to 2018 Read More »

Portainer: Open-source Docker and Kubernetes management

containers, Docker, GitHub, Kubernetes, News, open source, software /

Portainer: Open-source Docker and Kubernetes management 2024-07-01 at 07:32 By Mirko Zorz Portainer Community Edition is an open-source, lightweight service delivery platform for containerized applications. It enables the management of Docker, Swarm, Kubernetes, and ACI environments. It provides a smart GUI and a comprehensive API to manage your orchestrator resources, including containers, images, volumes, networks,

Portainer: Open-source Docker and Kubernetes management Read More »

‘Leaky Vessels’ Container Escape Vulnerabilities Impact Docker, Others 

cloud security, container, Docker, Vulnerabilities, vulnerability /

‘Leaky Vessels’ Container Escape Vulnerabilities Impact Docker, Others  2024-02-01 at 18:01 By Eduard Kovacs Snyk discloses information on Leaky Vessels, several potentially serious container escape vulnerabilities affecting Docker and others. The post ‘Leaky Vessels’ Container Escape Vulnerabilities Impact Docker, Others  appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS Feed View Original

‘Leaky Vessels’ Container Escape Vulnerabilities Impact Docker, Others  Read More »

MySQL Servers, Docker Hosts Infected With DDoS Malware

botnet, cloud security, cybercrime, DDoS, Docker, Malware & Threats, MySQL /

MySQL Servers, Docker Hosts Infected With DDoS Malware 14/11/2023 at 19:47 By Ionut Arghire Researchers warn attackers are targeting MySQL servers and Docker hosts to plant malware capable of launching distributed DDoS attacks. The post MySQL Servers, Docker Hosts Infected With DDoS Malware appeared first on SecurityWeek. This article is an excerpt from SecurityWeek RSS

MySQL Servers, Docker Hosts Infected With DDoS Malware Read More »

Be prepared to patch high-severity vulnerability in curl and libcurl

Docker, Don't miss, Endor Labs, Hot stuff, News, open source, patching, Qualys, security update, Sonatype, Synopsys, vulnerability, vulnerability disclosure /

Be prepared to patch high-severity vulnerability in curl and libcurl 10/10/2023 at 12:20 By Zeljka Zorz Details about two vulnerabilities (CVE-2023-38545, CVE-2023-38546) in curl, a foundational and widely used open-source software for data transfer via URLs, are to be released on Wednesday, October 11. Daniel Stenberg, the original author and lead developer, has said that

Be prepared to patch high-severity vulnerability in curl and libcurl Read More »

Scroll to Top