Back Issues This Week → Calendar → Current Issue → Popular →

All issuesVolume 340, Issue 2IT NewsOperations

Most Container Images You Pull Today Are Already Full of Vulnerabilities

Cloud Native Now, Thursday, July 9th, 2026

In an interview, Minimus co-founder John Morello explains why container images stay full of unpatched vulnerabilities.

This interview between Alan Shimel and Minimus co-founder John Morello examines persistent vulnerabilities in container images.

While vulnerability scanning has grown sophisticated, remediation never caught up, leaving organizations running unpatched images at scale. Morello explains that base images contain hundreds of unused packages, and upstream fixes lag far behind discovery.

Minimus addresses this by building hardened, minimal Docker images directly from source using AI-assisted tools, producing smaller images with fewer vulnerabilities.

Even large enterprises keep running outdated images because remediation costs remain prohibitively high, while AI has accelerated vulnerability discovery, shrinking defenders' response window.

more →  ·  More from Operations →