Blog

May 2026 recap: DevOpsDays Zurich, TanStack and Nx Console supply chain compromises, Mini Shai-Hulud's long tail, Copy Fail, AI workloads, and the road to Berlin.

A collection of the full forewords and book reviews from industry experts on Mohammad-Ali A'râbi's book, Docker and Kubernetes Security, as they appear in the published book.

Docker's official Twitter/X account shared a series of practical tips from Docker Captains. This post revisits those seven tips with more context and examples.

A personal reflection on my journey in the cloud-native ecosystem, from becoming a Docker Captain to mentoring the next generation of open-source contributors, and my application for the CNCF Ambassador program.

An exclusive behind-the-scenes look at the book 'Operational AI with Docker' by Ajeet Singh Raina and Harsh Manvar, including insights from my role as a technical reviewer.

Swiss Jass: Commandos Edition, a card game app inspired by the traditional Swiss card game Jass, is now available on the Google Play Store. The app features the Black Forest Commandos, a cast of characters that you have also met in the book Black Forest Shadow and the Docker Commandos workshop series.

Recapping JCON Europe, the Mini Shai-Hulud attack, an interview with Baruch Sadogursky, the 'Whispering JAR' in JAVAPRO, Foojay.io debut, Docker Sandboxes, and upcoming talks.

A deep dive into the Mini Shai-Hulud attack, a sophisticated NPM worm that uses the Bun runtime to bypass security and targets developer agents for persistence.

Am I vulnerable? That's the first question a CTO might ask in the case of a new CVE. To answer it, you need to know what's inside your container. SBOM is the word of the day. Especially, since EU Resilience Act makes it mandatory.

The first issue of Docker Security Dispatch: Docker's 13th birthday, the launch of Black Forest Shadow, a workshop at Rabobank, a JavaPro article, the best Docker book quarter in years, and what's next at JCON.

Java 26 just landed. Here's how to Dockerize a Spring Boot project from scratch using Docker Init—the first move in the Docker Commandos playbook.

Hands-on workshop materials for the 10 Docker Commandos at Rabobank, covering SBOM generation, CVE scanning, hardened images, VEX exemptions, Docker Bake, Cosign signing, and zero-day defense.

A curated reading list of the best books on Docker and Kubernetes for the first quarter of 2026, featuring releases from Docker Captains and industry experts.

How Docker Commandos evolved into Black Forest Commandos, connecting the narrative-driven security workshop with the origin story in the Black Forest Shadows universe.

Learn how to implement security best practices in multi-stage Docker builds, from source code to production images.

Docker Hardened Images are now open-source under Apache 2.0 license and free to use in your projects.

A curated list of all references and links related to the Docker and Kubernetes Security book by Mohammad-Ali A'râbi.

A curated list of the best books on Docker and Kubernetes security for 2026.

A step-by-step guide to the Docker Deep Dive workshop I conducted at WeAreDevelopers World Congress 2025, covering Docker's latest features and tools for containerization and security.

A personal journey and guide on how to become a Docker Captain, sharing knowledge, building community, and contributing to the Docker ecosystem.