Summary
In this chapter, we learned how to store container images in registries, using appropriate repositories and tags for our application components. You, as a developer, must provide the logic names, tags, and required information to your images to allow users to run your applications correctly. Labels will also allow you to include any relevant information that can help you track code changes and how they apply to your application’s processes.
In addition, it is critical to ensure a secure supply chain for our image artifacts. We learned that digests provide uniqueness, but that is not enough. We can include signatures to inform users about the provenance and ownership of the images we create, but signing does not guarantee the health of the files included inside our image layers. We will include content vulnerability scanning in our build process. This will allow us to review and verify whether the images we use to create our projects contain any security problems....
