51% of 4M Docker images have critical vulnerabilities

[detaro]

The details about the actively malicious ones in there seem a lot more interesting actually. The "X% have some outdated code somewhere, we didn't test if its actually used" reports on the other hand seem to be required yearly publishing for any security company doing anything with containers...

[mobilio]

That's why i share it.

Because people with low-level technical knowledge thinks that once everything is on Docker they're immune to lot of vulnerabilities.

So they run images without hesitation.