Docker Blog | Docker

2 min read Original article ↗

Jun 26, 2026

What Does EU AI Act Compliance Require?

Learn what EU AI Act compliance requires at each risk tier, key deadlines through 2027, and how engineering teams can operationalize AI governance.

Dan Stelzer
and
Monique Altman

Read now
Jun 25, 2026

How to Generate an SBOM for Container Workflows

Learn when, where, and how to generate SBOMs for container images. Covers build-time vs. post-build approaches, quality criteria, and CI/CD integration.

Read now
Jun 25, 2026

EU Cyber Resilience Act: Overview, Requirements, and Timelines

Learn what the EU Cyber Resilience Act requires, including SBOM mandates, vulnerability reporting, and compliance deadlines for container teams.

Dan Stelzer
and
Monique Altman

Read now
Jun 23, 2026

What is an SBOM (and Why Can’t You Ship Without One)?

Learn what a software bill of materials (SBOM) is, why it matters for supply chain security, how to generate one, and what formats and standards to use.

Read now
Jun 16, 2026

Docker Content Trust: Retirement and Migration Guidance

Docker Content Trust (DCT) and the Notary v1 service at notary.docker.io are being fully retired (first announced in July of 2025). This blog explains what is changing, who is affected, and how to move to modern alternatives.

Julia Wilson
and
Aditya Tripathi

Read now
Jun 15, 2026

Docker joins the Athena coalition: a cross-industry collaboration for supply chain security

AI is lowering the bar for supply chain attacks. Docker is joining the Athena alliance, a cross-industry effort to coordinate the defense of open source, building on our work to give every developer secure-by-default tools and our track record of sharing signals across the ecosystem.

Read now
Jun 11, 2026

Docker Hardened Images enhanced vulnerability scanning with Docker and Aikido

Aikido now scans Docker Hardened Images (DHI) with built-in VEX support. Vulnerabilities that Docker has verified as non-exploitable drop out of the queue automatically, so developers spend their time on findings that actually matter. This post walks through what changed, why it matters, and how users can benefit from the new integration. Why teams are…

Dan Stelzer
and
Bjorn Hovd

Read now
Jun 8, 2026

5 Software Supply Chain Security Best Practices for Development Teams

Learn the key software supply chain security best practices for container-based delivery, from trusted base images and dependency management to build provenance and runtime monitoring.

Read now