Containerization helped drastically improve the security of
applications by providing engineers with greater control over the
runtime environment of their applications.However, a significant
time investment is required to maintain the security posture of
those applications, given the daily discovery of new
vulnerabilities as well as regular releases of languages and
frameworks. The concept of “distroless” images offers the
promise of greatly reducing the time needed to keep applications
secure by eliminating most of the software contained in typical
container images.This approach also reduces the amount of