Docker

As agents take on more work, securing how they connect to tools matters more than ever. Docker is proud to join 25+ partners like @Atlassian, @claudeai, @cursor_ai, @okta, & @Zoom in supporting Cross App Access (XAA) - a new standard that helps AI connect securely across applications. bit.ly/4eEYVsP

Every package you install, base image you pull, and dependency you inherit is a trust decision. This guide explains the controls behind software supply chain security, from SBOMs and provenance to image signing and trusted base images: bit.ly/4vtlkk2

What’s stopping you from using agents more?

Across Ship Happens episodes, a clear pattern emerges: AI infrastructure matters as much as the models. This compilation of our favorite AI takes digs into trust, governance, and what really changes when agents move from suggestions to execution. Watch → youtube.com/watch?v=5UxzNK…

A lot of security guidance for Agents leaves important gaps. Not because it's wrong, but because agents behave fundamentally differently from the applications most teams are used to protecting. This guide explains where the real control points are: bit.ly/3SjqAIk

Agents are helping generate more code than ever. So why aren't organizations shipping proportionally faster? Docker CISO Mark Lechner’s @LeadDev London session digs into the trust gap behind agent adoption, what fails, and what effective governance looks like in practice → leaddev.com/ai/ship-10x-co…

AI governance is becoming one of the most talked-about topics in AI. The challenge: most governance guidance assumes you're governing models, not agents. This guide explains the principles and controls that organizations are building around AI systems today. bit.ly/3QqECHC

Your agents can write code, call APIs, modify files, & spin up containers. What makes them useful is also why many devs hesitate before letting them run unattended. Join Docker's Dan Ndombe and @DataScienceDojo on June 24 to learn how to run them safely. Register: bit.ly/4exTGep

Congrats to @ajeetsraina and @manvar_harsh! 🚀 One of the best parts of this community is seeing how many developers are eager to keep learning and expanding their Docker skills.

What actually makes a container image "hardened"? A hardened image is not just a smaller image. Hardening = minimization + continuous patching for near-zero CVEs + verifiable metadata (SBOMs, provenance, VEX, signatures). Read this guide to learn more: bit.ly/4owRKqZ

Docker has joined Athena, a new cross-industry coalition for the coordinated defense of open source software. As AI accelerates vulnerability discovery, industry collaboration matters more than ever. Here's why we're participating & what it means for developers: bit.ly/4uGWv31

How do you isolate your agents?

The interesting questions about agents aren't really about the model anymore. This @elastic video focuses on the part developers eventually run into: trust, autonomy, and where the boundaries should be- through a clear, practical walkthrough of Docker Sandboxes: youtube.com/watch?v=mlgRdW…

Run LLMs locally. No cloud required. Docker Captain Pawel Piwosz has a new course on using Docker Model Runner to run, manage, and integrate local AI models into your applications. Get started: bit.ly/4ggjEpa

Every agent workflow eventually runs into the same questions: What can it access? What happens when it makes a mistake? This issue of Docker Navigator explores how teams are answering them - with AI Governance, MCP controls, sandbox isolation & safer autonomous execution: bit.ly/4vgkgja

@AikidoSecurity Register for the webinar here: luma.com/aikido-docker

. @AikidoSecurity now scans Docker Hardened Images with built-in VEX support. CVEs Docker has verified as non-exploitable drop out automatically, leaving teams with findings that actually matter. Read the walkthrough → bit.ly/4eBhoYj Info on the upcoming Docker + Aikido webinar in the comments!

AI may be accelerating software development, but it isn’t removing engineering fundamentals. In this special Ship Happens highlight episode, six engineering leaders share what they’re seeing as AI moves from experimentation into real software delivery: bit.ly/43s92vT

When we introduced Gordon, the goal wasn't to build another chatbot. It was to help developers get unstuck. Seeing users make Gordon part of their daily workflow & solve problems that other tools couldn't, tells us we're heading in the right direction. Have you tried Gordon? bit.ly/49RXyFH

How do you isolate your agents?