Skip to content

Krishna's Tech Blog

All Posts Learning Certifications Notices

Krishna's Tech Blog

Practical engineering knowledge from years of building real systems.

232 articles · 1,340 flashcards · 67 decks

Content

All Articles
Salesforce
AWS
Search

Learning

Flashcards
Quizzes
Certifications
Reading List

More

Notices
Glossary
Site Stats
RSS Feed

© 2026 Krishna's Tech Blog. Built with Next.js.Site Stats·RSS

←All articles

Banner for Container Image Security: From Dockerfile to Runtime

Security13 min read

Container Image Security: From Dockerfile to Runtime

Most container security failures don't start with the runtime -- they start with a Dockerfile that pulls a base image with seventy known CVEs and runs everything as root. Here's the layered security model I use for containers, the controls that actually matter, and the supply-chain hygiene that catches problems before they reach production.

KP

Krishna Patil

August 13, 2025

Share

#security#containers#docker#kubernetes#supply-chain#devsecops

SeriesPart 50 of 172

Engineering Craft

TypeScript, CI/CD, databases, observability -- the skills that make code production-ready.

Previous

Saga Pattern: Distributed Transactions Without Two-Phase Commit

Next

Platform Engineering: Building Internal Developer Platforms That Devs Actually Use

More in Security

TOCTOU Race Conditions: When Checking Isn't the Same as Doing

12 min read

TLS Handshake Explained: What Every Engineer Should Actually Know

13 min read

Threat Modeling for Engineers: STRIDE in Practice

12 min read

Study This Topic

AWS Cognito & Authentication

20 cards · intermediate

AWS IAM & Security

20 cards · intermediate

Docker & Kubernetes Essentials

20 cards · intermediate

Older

Consistent Hashing: Distributing Data Without a Coordinator

Newer

Container Orchestration Beyond Kubernetes: Nomad, ECS, and When K8s Is Overkill