Most Container Images You Pull Today Are Already Full of Vulnerabilities
Techstrong TV Interviews
•
17m
John Morello, Co-Founder and CTO of Minimus, joins Alan Shimel on Techstrong.TV to discuss the problem his previous company, Twistlock, never fully solved: finding vulnerabilities in container images is easy — remediating them at scale is the real challenge.
John explains how Minimus builds hardened, minimal Docker images from upstream source, dramatically reducing both image size and vulnerability counts compared to standard container images. He walks through the pipeline behind it — built on GCP and GitHub with AI-assisted tooling — and discusses how the AI threat landscape has shifted from theoretical to actively weaponized for vulnerability discovery.
The conversation closes with a candid look at how even large, well-known enterprises and government cloud environments are still running outdated, unpatched container images at scale, and what needs to change.
Up Next in Techstrong TV Interviews
-
Your Company Has a Shadow AI Problem ...
Jimmy White, VP of AI at F5, joins Alan Shimel on Techstrong.TV to discuss the rise of "shadow AI" — the AI equivalent of shadow IT, where employees adopt AI tools and agents that IT and security teams never approved and can't see.
Jimmy traces his path from Mandiant to Qualtrics to founding Cal...
-
Barracuda CISO Urges AI-Ready Vulnera...
Mike Vizard talks with Arve Kjoelen, CISO at Barracuda Networks, about why AI is accelerating vulnerability discovery and increasing the pressure on security teams to remediate faster. Kjoelen explains why organizations need more automation for patch testing, asset ownership, vulnerability assign...
-
Why the U.S. Military Should Not Carr...
Robert Morcos, Founder & CEO of NEXA (formerly Social Mobile), joins Alan Shimel on Techstrong.TV to make the case that mission-critical users — from the U.S. Air Force to first responders — should never be handed the same consumer, off-the-shelf device you'd give an 11-year-old.
Robert traces N...