Researchers at the RWTH Aachen University in Germany published a study revealing that tens of thousands of container images hosted on Docker Hub contain confidential secrets, exposing software, online platforms, and users to a massive attack surface.
As someone who has been religiously baking my own docker images on the last 2 months…? This worries me a bit.
Then again, I don’t know much about this in detail, but I can bindly assume that scratch-based images are not affected by this “at all”.