Skip to content

Workshop

Dockerize Java Securely: SBOMs + Attestations + Bake

with Mohammad-Ali A'râbi

  • DevSecOps
  • Docker
  • Java
  • Security

Free for All Attendees · Seats Limited

Workshops are included with your event ticket at no extra cost. Seats fill up fast — registration opens through the official event app approximately one week before the event. Follow app notifications to know the moment sign-ups go live.

Starts

Thu 9 Jul, 15:30

Ends

Thu 9 Jul, 17:30

About This Workshop

Containerizing Java applications is easy. Containerizing them securely is not. In this session, we'll explore how to strengthen your Java Docker builds with Software Bill of Materials (SBOMs) and registry attestations. Instead of generating a single SBOM at the end, you'll see how to extract SBOMs at every stage of a multi-stage build, catching vulnerabilities that would otherwise slip through. We'll cover: - Why SBOMs are critical for modern Java applications - How to integrate SBOM generation directly into Docker builds - Use Docker Bake to make it delicious - How to decrease the number of CVEs using Docker Hardened Images - Pushing SBOMs as attestations to your registry for supply-chain visibility - Asking Johnny Cage to sign the images and their SBOM attestations Live demo: Containerizing a Spring Boot app with security built in

More to Explore

More Workshops

More hands-on sessions waiting — find the one that fits your stack.