Red Hat and Black Duck want to make sure that when you run a container, it's really the container you want to run and not a rogue package.
We love Docker and containers. But, the more we use containers the more we worry exactly what it is we're running when we spin them up. So, Linux giant and cloud power Red Hat and Black Duck, a leader in automating securing and managing open-source software, are working together on establishing a secure and trusted model for containerized application delivery.
Read more at ZDNet News