Minimal Base Images
← Back to Image Security
Using the smallest possible base images (distroless, Alpine, scratch) for containers to minimize the attack surface. Fewer packages mean fewer potential vulnerabilities. Distroless images contain only the application and its runtime dependencies, with no shell or package manager.