Docker's Hardened Images are designed to reduce Common Vulnerabilities and Exposures (CVEs) in container images, providing a more secure foundation for developers. These images are built from the ground up with security in mind, reducing the target area for attacks by removing up to 95% of unnecessary contents. Docker's curation and governance process ensures that these images are continuously monitored for CVEs, providing a trusted source of provenance for organizations. Cloudsmith is partnering with Docker on this launch, offering a private registry for artifacts, including container images, and enforcing policies around licensing and vulnerabilities. This collaboration aims to further secure the software supply chain by providing seamless integration between speed and compliance.