Join us on our deep dive into Chisel: the tool that brings enterprise-grade traceability to ultra-minimal container images.
In this video, we explain why Chisel was created, and how it helps address security challenges in modern container images.
We cover why container images often include unnecessary software and dependencies, why building minimal distroless containers can be difficult, and how missing metadata can lead to false confidence in vulnerability scans.
We also explore the differences in how Chisel approaches container image creation, including:
– Why manually trimming container images can be unreliable
– How Chisel builds images from the ground up, instead of reducing existing ones
– How Ubuntu packages can be broken into smaller slices that include only runtime components
– How metadata improves traceability and vulnerability scanning
By the end of the video, we show how Chisel enables developers to create minimal, trusted container images, while keeping the reliability and support of Ubuntu.
#OpenSource #Containers #Security #Ubuntu #Canonical #DevOps #Cloud #Developer
