Bleeping Computer

Thousands of images on Docker Hub leak auth secrets, private keys

Most of the exposed secrets, 95% for private keys and 90% for API secrets, resided in single-user images, indicating that they were likely unintentionally leaked. The highest impact was on Docker Hub, ...
InfoQ

Docker 1.13 Released with Improved CLI, Compose-File Support for Swarm Mode, and Secrets API

Unlock the full InfoQ experience by logging in! Stay updated with your favorite authors and topics, engage with content, and download exclusive resources. Birgitta Böckeler, Distinguished Engineer at ...
Infosecurity-magazine.com

Scanning Docker Images for Secrets

When we talk about secret sprawl, we immediately think about API keys, passwords, credentials or any secret lurking in some source code. For sure, source code is very tightly linked to secret sprawl.