Mastodawn

#trivy supply chain attack spreads to #dockerhub. Compromised Docker Hub images and a self-propagating npm worm have been discovered, escalating the Trivy breach into a multi-platform threat. Stolen npm tokens from infected CI/CD pipelines fueled a self-propagating worm dubbed #CanisterWorm, compromising nearly 50 npm packages across multiple scopes.

https://thehackernews.com/2026/03/trivy-security-scanner-github-actions.html?m=1

Trivy Security Scanner GitHub Actions Breached, 75 Tags Hijacked to Steal CI/CD Secrets

Trivy attack force-pushed 75 tags via GitHub Actions, exposing CI/CD secrets, enabling data theft and persistence across developer systems.

The Hacker News

Docker Blog Feb 25

Open WebUI + Docker Model Runner: Self-Hosted Models, Zero Configuration
#Docker #Products #AIML #DockerHub #DockerModelRunner

https://www.docker.com/blog/openwebui-docker-model-runner/

OpenWebUI + Model Runner: Zero-Config Local AI | Docker

Run self-hosted models in minutes. OpenWebUI auto-detects Docker Model Runner. No configuration required so you can chat with local models from a modern web UI.

Docker

Docker Blog Feb 17

The Multi-Model Database for AI Agents: Deploy SurrealDB with Docker Extension
#Docker #Community #Products #Solutions #AIAgent #DockerDesktop #DockerExtensions #DockerHub

https://www.docker.com/blog/deploy-surrealdb-docker-desktop-extension/

Deploy SurrealDB with Docker Desktop Extension | Docker

Deploy SurrealDB in Docker Desktop with its extension, then build a WhatsApp RAG chatbot using vectors, graphs, and real-time queries all in one database.

Docker

Marcel Jan 28

Momentan geht mir Dockerhub voll aufn Sack. Angeblich Pulllimit erreicht (100 Pulls in 6 Stunden)

IM LEBEN NICHT!

#Docker #Dockerhub

Docker Blog Jan 26

Clawdbot with Docker Model Runner, a Private Personal AI Assistant
#Docker #Products #AIML #DockerHub #DockerModelRunner

https://www.docker.com/blog/clawdbot-docker-model-runner-private-personal-ai/

Run a Private Personal AI with Clawdbot + DMR | Docker

Use Clawdbot + Docker Model Runner to run a private personal assistant on your hardware—fast setup, local data control, and predictable costs.

Docker

Docker Blog Jan 26

Run Claude Code Locally with Docker Model Runner
#Docker #Products #AIML #DockerDesktop #DockerHub #DockerModelRunner

https://www.docker.com/blog/run-claude-code-locally-docker-model-runner/

Use Claude Code with Docker Model Runner | Docker

Get Claude Code working with Docker Model Runner—free, on-device, and private. Your cloud bill stays at $0.

Docker

DocYeet

Jan 24

Finally got time to update the source of my bentopdf instance, to avoid pulling from the "discontinued" docker hub version

Remember to switch to ghcr.io/alam00000/bentopdf-simple:1.15.3 to avoid being compromised by the other version

More context: https://github.com/alam00000/bentopdf/issues/399

#selfhosted #selfhosting #pdf #homelab #security #docker #dockerhub #ghcr #

🛑 BentoPDF urgent security notice · Issue #399 · alam00000/bentopdf

Hello everyone. I am currently experiencing a critical administrative issue with our official Docker Hub account bentopdf Due to an error during an organization migration, we have temporarily lost ...

GitHub

Reddit Tech VN Bot Jan 23

Nhà phát triển Bentopdf vừa mất quyền kiểm soát namespace trên Docker Hub, đưa ra cảnh báo: **Không pull bentopdf/** và **không cập nhật container lên phiên bản mới**. Tới thời điểm này vẫn chưa có thông tin cập nhật mới; nhà phát triển im lặng trên GitHub. #Docker #Bentopdf #SelfHosted #DockerHub #CôngNghệ #Vietnam #TinCôngNghệ

https://www.reddit.com/r/selfhosted/comments/1qkxw0e/bentopdf_any_update/

Docker Blog Jan 15

OpenCode with Docker Model Runner for Private AI Coding
#Docker #Products #AIML #DockerHub #DockerModelRunner

https://www.docker.com/blog/opencode-docker-model-runner-private-ai-coding/

Private AI Coding: OpenCode + Model Runner | Docker

Configure OpenCode to use Docker Model Runner for a private, cost-aware coding assistant. Run models locally via an OpenAI-compatible API with full control.

Docker

Docker Blog Jan 14

Safer Docker Hub Pulls via a Sonatype-Protected Proxy
#Docker #Partnerships #Products #DockerHub #NexusRepository #Softwaresupplychainsecurity

https://www.docker.com/blog/safer-docker-hub-pulls-via-a-sonatype-protected-proxy/

Safer Docker Hub Pulls via a Sonatype-Protected Proxy | Docker

Learn from Docker experts to simplify and advance your app development and management with Docker. Stay up to date on Docker events and new version

Docker