Techstrong TV — Tue, Jul 14
Most Container Images You Pull Today Are Already Full of Vulnerabilities
Alan Shimel with John Morello
John Morello, Co-Founder and CTO of Minimus, joins Alan Shimel on Techstrong.TV to discuss the problem his previous company, Twistlock, never fully solved: finding vulnerabilities in container images is easy -- remediating them at scale is the real challenge. John explains how Minimus builds hardened, minimal Docker images from upstream source, dramatically reducing both image size and vulnerability counts compared to standard container images. He walks through the pipeline behind it -- built on GCP and GitHub with AI-assisted tooling -- and discusses how the AI threat landscape has shifted from theoretical to actively weaponized for vulnerability discovery. The conversation closes with a candid look at how even large, well-known enterprises and government cloud environments are still running outdated, unpatched container images at scale, and what needs to change.