The original post: /r/cybersecurity by /u/Wizkidbrz on 2024-11-05 16:57:48.

This has been a hot topic at my job recently as we started adopting containers.

How is everyone handling container vulnerabilities?

We are scanning these 3rd party container images and are finding some high/critical vulnerabilities in them.

The application owners are giving us push back on getting them fixed because they rely on the vendor to update their container imagine and that is not an easy ask.