Docker experienced significant disruptions due to a widespread outage in AWS's US-East-1 region on October 20, 2025. Developers worldwide rely on Docker as part of their daily workflow, and we regret the disruption this caused. In this post, we want to provide transparency about what happened, what we have learned, and how we are strengthening
I'm Mike Coleman, a staff solutions architect at Docker. In this role, I spend a lot of time talking to enterprise customers about AI adoption. One thing I hear over and over again is that these companies want to ensure appropriate guardrails are in place when it comes to deploying AI tooling. For instance, many
This is an abridged version of the interview we had in AI Guide to the Galaxy, where host Oleg Šelajev spoke with Jim Clark, Principal Software Engineer at Docker, to unpack Docker's MCP Toolkit and MCP Gateway. TL;DR What they are: The MCP Toolkit helps you discover, run, and manage MCP servers; the MCP Gateway
Trusted Software Starts Here The era of agents is here. Some teams are experimenting, others are just getting started, and a few are already running agents in production. But one challenge stands out: trust. Trust that your agents will act securely. Over 20 million developers already rely on Docker to build and ship software safely
Every developer eventually hits a wall with their local machine. Maybe it's training an AI model that drains your CPU, compiling a massive codebase that makes your fan sound like a jet engine, or simply trying to run GPU workloads on a laptop that doesn't have one. The result is the same: slow builds, limited
The command line is where developers live and breathe. A powerful and intuitive CLI can make the difference between a frustrating task and a joyful one. That's why we're excited to announce a major upgrade to the interactive chat experience in Docker Model Runner, our tool for running AI workloads locally. We've rolled out a
Hi, I'm Sergei Shitikov - a Docker Captain and Lead Software Engineer living in Berlin. I'm focused on DevOps, developer experience, open source, and local AI tools. I created this extension to make it easier for anyone - even without a technical background - to get started with local LLMs using Docker Model Runner and
AI assistants are changing how we write code, but their true power is unleashed when they can interact with specialized, high-precision tools. OpenAI's Codex is a formidable coding partner, but what happens when you connect it directly to your running infrastructure? Enter the Docker MCP Toolkit. The Model Context Protocol (MCP) Toolkit acts as a
An investigation into a compromised AWS-hosted infrastructure revealed a new GNU/Linux rootkit called LinkPro. The attackers exploited a vulnerable Jenkins server (CVE-2024-23897) to deploy a malicious Docker image on Kubernetes clusters. The rootkit, written in Golang, features eBPF modules for concealment and remote activation, allowing attackers to gain persistence and execute commands. The sophisticated malware supports multiple communication protocols and uses a 'magic packet' for...
Today, we are publishing ClamAV 1.5.1. This version has been released shortly after ClamAV 1.5.0 in order to address several significant issues that were identified following its publication. The release files for the patch versions are available for download on the ClamAV downloads page , on the GitHub Release page , and through Docker Hub . The images on Docker Hub may not be immediately available on release day. ClamAV 1.5.1 is a patch release with the following fixes: Fixed a significant...
Building Docker images is an important component of the software delivery pipeline for modern applications. It's how we package our apps and services so that they can be distributed to others and deployed to production. While the Dockerfile has long been the standard for defining container images, it is known to be challenging to make
At Docker, we are building our hardened images to exacting standards. That means carefully crafting by hand, because humans are still the best security architects. That said, we understand the value of AI and deploy it as an extra set of eyes at critical junctures in our Docker Hardened Image (DHI) build process. With this
In the rapidly evolving landscape of AI-assisted development, most developers continue to struggle with clunky web interfaces, resource-intensive IDEs, and fragmented toolchains. But what if we told you there's a combination that pairs Google's 76.3K-star Gemini CLI (in just 5 months) with Docker's innovative MCP Toolkit, quietly revolutionizing how modern AI developers work? Enter the
We're thrilled to announce that we're breathing new life into the Docker Model Runner community, and we want you to be a part of it! Our goal is to make it easier than ever for you to contribute, collaborate, and help shape the future of running AI models with Docker. From a Limited Beta to
We're thrilled to bring NVIDIA DGX(TM) Spark support to Docker Model Runner. The new NVIDIA DGX Spark delivers incredible performance, and Docker Model Runner makes it accessible. With Model Runner, you can easily run and iterate on larger models right on your local machine, using the same intuitive Docker experience you already trust. In this
How to Do Hardened Images (and Container Security) Right Container security is understandably a hot topic these days, with more and more workloads running atop this mainstay of the cloud native landscape. While I might be biased because I work at Docker, it is safe to say that containers are the dominant form factor for
I'm taking a web app course, it's my first time doing anything web related. I'm on MacOS but my firewall was OFF . I'm in shared accommodation, but I thought everything was local on my Mac, but it turns out Docker was exposing ports to all interfaces. Could someone have viewed anything on my Mac, like discord DMs or just viewed my screen? submitted by /u/Frosty_Carrot5623 [link] [comments]
I setup a Discord bot to play music today, using a docker installation of Vocard, and it kept asking me all these questions about "please provide your bot's private key" and all these features that are supposed to make the bot more secure, and it even asked me to make a 50 character password with symbols and capitals to use for encryption, but then after i was done, it just stored all those keys and passwords and stuff in a plain text file on my PC. So it got me wondering, "why do bots need all...