Black Hat Talk on Container Image Security by John, CTO of Root

The video presents a Black Hat talk by John, CTO and co-founder of Root, focusing on container image security within software supply chains. It examines three widely used open-source base images (Golang, Python, and an MCP gateway) running on Debian, highlighting critical vulnerabilities, insecure patterns in Dockerfiles, and compliance risks. Key issues include excessive CVEs (e.g., 1,000+ in Golang), deferred patches in Debian Bookworm (e.g., CVE-2025-48384 on the CISA KEV list), and architectural flaws like Docker-in-Docker (DIND) running as root. The talk demonstrates tools like Trivy for scanning and multi-stage builds to reduce attack surfaces, emphasizing the need for proactive security practices such as least-privilege users, semantic version upgrades, and backported patches. It also notes the gap between exploit speeds (7–10 days for critical CVEs) and patching timelines, stressing automation and policy enforcement to bridge this divide. Compliance requirements like SBOMs, VEX documentation, and attestations are discussed as emerging standards for supply chain security.