Docker Hardened Images went open source in December 2025. Launched in May 2025 as a secure, minimal, production-ready image catalog, DHI is now free for every developer. Tushar Jain, EVP of Engineering at Docker, walks through exactly what that means on this Changelog episode.
The conversation covers what makes these images hardened in practice: reduced attack surface, minimal dependencies, and production readiness by default. These are not marketing claims. Jain gets specific about the engineering decisions behind the catalog, and that specificity is why this episode is worth your time beyond the headline.
The full catalog is browsable at hub.docker.com/hardened-images/catalog. If you ship containers and have not audited what is actually inside your base images, this episode reframes the question.
[READ ORIGINAL →]