Adrian Mouat
@adrianmouat.com
Technical community advocate at Chainguard. Bad guitarist. He/him.
Pinned
Adrian Mouat
@adrianmouat.com
· Apr 11
Want to see how secure your container images are? Try out the CHPs scorer. Here's a run on an example Python project that's pretty typical of what you find in the wild.
@puerco.mx kicking off Open Source SecurityCon by demonstrating how to prevent cats messing with your training data.
November 10, 2025 at 2:33 PM
@puerco.mx kicking off Open Source SecurityCon by demonstrating how to prevent cats messing with your training data.
MOAR
I'm Stoked! Tuesday. #KubeCon. 6:40pm during KubeCrawl. Come On Down to the CVE Price Is Right at the @chainguard.dev booth with me and @adrianmouat.com, seeing who can guess the closest (but not over!) the CVE count of popular open source project images for prizes #DevOps #DevSecOps #Sponsored
November 10, 2025 at 11:26 AM
MOAR
Continuing quote Friday, here's one from Werner Herzog when a journalist asks him about teaching his son "real things":
‘It’s much easier than that. Your son doesn’t need to know how to milk a cow. I’d allow him to dig a deep hole in the ground. Just let him dig a hole in the ground.’
‘It’s much easier than that. Your son doesn’t need to know how to milk a cow. I’d allow him to dig a deep hole in the ground. Just let him dig a hole in the ground.’
November 7, 2025 at 11:02 AM
Continuing quote Friday, here's one from Werner Herzog when a journalist asks him about teaching his son "real things":
‘It’s much easier than that. Your son doesn’t need to know how to milk a cow. I’d allow him to dig a deep hole in the ground. Just let him dig a hole in the ground.’
‘It’s much easier than that. Your son doesn’t need to know how to milk a cow. I’d allow him to dig a deep hole in the ground. Just let him dig a hole in the ground.’
I'm very much looking forward to KubeCon Atlanta next week.
On Monday, I'll be hosting a panel "Balancing Developer Freedom and Security" with Cat Morris, @marcusforpeace.bsky.social , @alex.zenla.io (plus A.N. Other guest) as part of Open Source SecurityCon. https://tinyurl.com/23sjsctb
1/3
On Monday, I'll be hosting a panel "Balancing Developer Freedom and Security" with Cat Morris, @marcusforpeace.bsky.social , @alex.zenla.io (plus A.N. Other guest) as part of Open Source SecurityCon. https://tinyurl.com/23sjsctb
1/3
CNCF-hosted Co-located Events North America 2025: Panel: Balancing Developer Freedom and S...
View more about this event at CNCF-hosted Co-located Events North America 2025
tinyurl.com
November 6, 2025 at 4:03 PM
I'm very much looking forward to KubeCon Atlanta next week.
On Monday, I'll be hosting a panel "Balancing Developer Freedom and Security" with Cat Morris, @marcusforpeace.bsky.social , @alex.zenla.io (plus A.N. Other guest) as part of Open Source SecurityCon. https://tinyurl.com/23sjsctb
1/3
On Monday, I'll be hosting a panel "Balancing Developer Freedom and Security" with Cat Morris, @marcusforpeace.bsky.social , @alex.zenla.io (plus A.N. Other guest) as part of Open Source SecurityCon. https://tinyurl.com/23sjsctb
1/3
Pretty sure my kids have worked out a rota system for messing with my sleep.
November 6, 2025 at 1:58 PM
Pretty sure my kids have worked out a rota system for messing with my sleep.
I've recently been reading an early access version of Refactoring English by @mtlynch.io .
I have to say this is a great book, with lots of hard-won tips and advice on how to make your writing more accessible and get it in front of a relevant audience.
I have to say this is a great book, with lots of hard-won tips and advice on how to make your writing more accessible and get it in front of a relevant audience.
Refactoring English
Effective writing for software developers
refactoringenglish.com
November 6, 2025 at 11:02 AM
I've recently been reading an early access version of Refactoring English by @mtlynch.io .
I have to say this is a great book, with lots of hard-won tips and advice on how to make your writing more accessible and get it in front of a relevant audience.
I have to say this is a great book, with lots of hard-won tips and advice on how to make your writing more accessible and get it in front of a relevant audience.
Reposted by Adrian Mouat
One thing I find pretty remarkable is the fact that models like Whisper for voice-to-text have gotten really good at removing stop words and pauses from speech understanding when you change your inflection to mean putting a word in quotes. It is really remarkable.
November 6, 2025 at 3:58 AM
One thing I find pretty remarkable is the fact that models like Whisper for voice-to-text have gotten really good at removing stop words and pauses from speech understanding when you change your inflection to mean putting a word in quotes. It is really remarkable.
The Custom Assembly tooling at @chainguard.dev just got some nice updates!
I recorded a new video showcasing custom assembly including the improved rename/save-as functionality.
I recorded a new video showcasing custom assembly including the improved rename/save-as functionality.
Creating Bespoke Chainguard Container Images with Custom Assembly
This video shows how to use Chainguard's Custom Assembly feature to create bespoke images tailored to your organization's requirements. Custom Assembly image...
www.youtube.com
November 5, 2025 at 11:02 AM
The Custom Assembly tooling at @chainguard.dev just got some nice updates!
I recorded a new video showcasing custom assembly including the improved rename/save-as functionality.
I recorded a new video showcasing custom assembly including the improved rename/save-as functionality.
If you've visited the @chainguard.dev Images page recently you might have noticed there's a fun new calculator which estimates how much $$$ you could save by moving to our images and thereby eliminating CVE remediation tasks.
November 3, 2025 at 11:03 AM
If you've visited the @chainguard.dev Images page recently you might have noticed there's a fun new calculator which estimates how much $$$ you could save by moving to our images and thereby eliminating CVE remediation tasks.
Reposted by Adrian Mouat
The ATmosphere is now over 40M accounts 🪿🎉🙌
October 31, 2025 at 1:49 PM
The ATmosphere is now over 40M accounts 🪿🎉🙌
I thought I'd starting posting quotes every Friday as something a little more interesting for the weekend.
Hopefully it's not too cringy, but I do have a soft spot for an inspirational quote.
We're starting with...
Hopefully it's not too cringy, but I do have a soft spot for an inspirational quote.
We're starting with...
October 31, 2025 at 11:02 AM
I thought I'd starting posting quotes every Friday as something a little more interesting for the weekend.
Hopefully it's not too cringy, but I do have a soft spot for an inspirational quote.
We're starting with...
Hopefully it's not too cringy, but I do have a soft spot for an inspirational quote.
We're starting with...
Big thanks to Anthony Hodson for doing a write-up on the recent @kcduk.bsky.social event, with short interviews from @lizrice.com , @hannahfoxwell.net and myself.
Cloud Native's Human Element: Takeaways from KCD Edinburgh 2025
It was unseasonably dry in Edinburgh over the conference days of the 21st to the 22nd of October 2025. I was grateful for the opportunity to connect with the community and the organisers of Kubernetes Container Days (KCD), thanks to Lewis Denham-Parry from Edera and the KCD Edinburgh team.
www.linkedin.com
October 30, 2025 at 11:04 AM
Big thanks to Anthony Hodson for doing a write-up on the recent @kcduk.bsky.social event, with short interviews from @lizrice.com , @hannahfoxwell.net and myself.
A little while back Thomas Strömberg posted (on LinkedIn) about the surprisingly lack of malware detection tooling running on platforms today.
Sign Up | LinkedIn
500 million+ members | Manage your professional identity. Build and engage with your professional network. Access knowledge, insights and opportunities.
www.linkedin.com
October 29, 2025 at 11:04 AM
A little while back Thomas Strömberg posted (on LinkedIn) about the surprisingly lack of malware detection tooling running on platforms today.
Reposted by Adrian Mouat
@adrianmouat.com from @chainguard.dev teaching the attendees at #cndb2025 the secrets about Guarding the Supply Chain 🛡️🚀
October 28, 2025 at 10:52 AM
@adrianmouat.com from @chainguard.dev teaching the attendees at #cndb2025 the secrets about Guarding the Supply Chain 🛡️🚀
If you were affected by recent changes to MinIO, check out the @chainguard.dev MinIO image. We didn't want people to be stuck on an unmaintained image, so we've added the our version to the free tier.
Secure and Free MinIO Chainguard Containers
MinIO pulled its free images—but Chainguard has you covered. Get zero-CVE, continuously built MinIO and MinIO Client containers, free and secure from Chainguard.
www.chainguard.dev
October 28, 2025 at 11:05 AM
If you were affected by recent changes to MinIO, check out the @chainguard.dev MinIO image. We didn't want people to be stuck on an unmaintained image, so we've added the our version to the free tier.
If anyone is at @cloudnativebergen.dev today, please come catch my talk at 11.45 in Hovedsalen (first floor).
I'll be talking all things Supply Chain Security and going through some tools and projects that can help you improve your security posture, especially with containers.
I'll be talking all things Supply Chain Security and going through some tools and projects that can help you improve your security posture, especially with containers.
October 28, 2025 at 7:59 AM
If anyone is at @cloudnativebergen.dev today, please come catch my talk at 11.45 in Hovedsalen (first floor).
I'll be talking all things Supply Chain Security and going through some tools and projects that can help you improve your security posture, especially with containers.
I'll be talking all things Supply Chain Security and going through some tools and projects that can help you improve your security posture, especially with containers.
We recently announced the GA release of @chainguard.dev Libraries for Python. And we're working hard on Java and Node.
Why should you be interested? Because you don't want to be impacted by the next Shai Hulud or similar attack.
Why should you be interested? Because you don't want to be impacted by the next Shai Hulud or similar attack.
Chainguard Libraries for Python: Now Generally Available with CVE Remediation and Malware Protection
Chainguard Libraries for Python, trusted open source language libraries designed for CVE remediation and malware protection, is now generally available.
tinyurl.com
October 27, 2025 at 4:04 PM
We recently announced the GA release of @chainguard.dev Libraries for Python. And we're working hard on Java and Node.
Why should you be interested? Because you don't want to be impacted by the next Shai Hulud or similar attack.
Why should you be interested? Because you don't want to be impacted by the next Shai Hulud or similar attack.
Reposted by Adrian Mouat
That's no ballroom
A very offline cousin sent this to fam group chat. This story is breaking containment.
October 25, 2025 at 1:10 AM
That's no ballroom
One of my favourite movie quotes:
"You, me, or nobody is gonna hit as hard as life. But it ain't about how hard ya hit. It's about how hard you can get hit and keep moving forward. How much you can take and keep moving forward. That's how winning is done!"
"You, me, or nobody is gonna hit as hard as life. But it ain't about how hard ya hit. It's about how hard you can get hit and keep moving forward. How much you can take and keep moving forward. That's how winning is done!"
October 24, 2025 at 10:02 AM
One of my favourite movie quotes:
"You, me, or nobody is gonna hit as hard as life. But it ain't about how hard ya hit. It's about how hard you can get hit and keep moving forward. How much you can take and keep moving forward. That's how winning is done!"
"You, me, or nobody is gonna hit as hard as life. But it ain't about how hard ya hit. It's about how hard you can get hit and keep moving forward. How much you can take and keep moving forward. That's how winning is done!"
Thanks to everyone who came to my @kcduk.bsky.social talk yesterday. Here's the slides:
KCDUK 2025 Supply Chain Security and the Real World -- Attendee Copy
Supply Chain Security and the Real World: Lessons from Incidents Adrian Mouat Technical Community Advocate Chainguard
docs.google.com
October 23, 2025 at 1:06 PM
Thanks to everyone who came to my @kcduk.bsky.social talk yesterday. Here's the slides:
Reposted by Adrian Mouat
A modern, Rust-powered Linux scanner that unmasks hidden rootkits, stealthy eBPF tricks, and ghost processes in one fast sweep (45+ scanners)
GitHub - h2337/ghostscan: A modern, Rust-powered Linux scanner that unmasks hidden rootkits, stealthy eBPF tricks, and ghost processes in one fast sweep (45+ scanners)
A modern, Rust-powered Linux scanner that unmasks hidden rootkits, stealthy eBPF tricks, and ghost processes in one fast sweep (45+ scanners) - h2337/ghostscan
github.com
October 22, 2025 at 11:03 AM
A modern, Rust-powered Linux scanner that unmasks hidden rootkits, stealthy eBPF tricks, and ghost processes in one fast sweep (45+ scanners)
Reposted by Adrian Mouat
Speaking in public is a skill like any other, and it absolutely comes with practice.
But it does not come naturally to most humans. Public speaking is typically people’s number one fear, even over death. Seinfeld joked that people at a funeral would rather be in the casket than giving the eulogy!
But it does not come naturally to most humans. Public speaking is typically people’s number one fear, even over death. Seinfeld joked that people at a funeral would rather be in the casket than giving the eulogy!
I'm not sure about @randyshoup.bsky.social (who is a great speaker!) but I really had to work at presentations and talks. It didn't come naturally.
So don't worry if you're nervous or your first talks aren't amazing. It's something that definitely gets easier with practice!
So don't worry if you're nervous or your first talks aren't amazing. It's something that definitely gets easier with practice!
As evidenced by you and me, amirite?
October 22, 2025 at 10:30 AM
Speaking in public is a skill like any other, and it absolutely comes with practice.
But it does not come naturally to most humans. Public speaking is typically people’s number one fear, even over death. Seinfeld joked that people at a funeral would rather be in the casket than giving the eulogy!
But it does not come naturally to most humans. Public speaking is typically people’s number one fear, even over death. Seinfeld joked that people at a funeral would rather be in the casket than giving the eulogy!
I'm not sure about @randyshoup.bsky.social (who is a great speaker!) but I really had to work at presentations and talks. It didn't come naturally.
So don't worry if you're nervous or your first talks aren't amazing. It's something that definitely gets easier with practice!
So don't worry if you're nervous or your first talks aren't amazing. It's something that definitely gets easier with practice!
As evidenced by you and me, amirite?
October 22, 2025 at 10:21 AM
I'm not sure about @randyshoup.bsky.social (who is a great speaker!) but I really had to work at presentations and talks. It didn't come naturally.
So don't worry if you're nervous or your first talks aren't amazing. It's something that definitely gets easier with practice!
So don't worry if you're nervous or your first talks aren't amazing. It's something that definitely gets easier with practice!
Now we have @wiggitywhitney.bsky.social telling us how to trust a liar. Or creating a journal application with Claude code and open telemetry.
October 22, 2025 at 9:26 AM
Now we have @wiggitywhitney.bsky.social telling us how to trust a liar. Or creating a journal application with Claude code and open telemetry.