Embarking on a New Journey

Farewell, Slim — Transitioning to a new and larger mission!

We're excited to share some big news from Slim.AI. We're taking a bold new direction, focusing all our energy on software supply chain security, now under our new name root.io. To meet this opportunity head-on, we’re building a solution focused on transparency, trust, and collaboration between software producers and consumers.

When we started Slim.AI, our goal was to help developers make secure containers. But as we dug deeper with our early adopters and key customers, we realized a bigger challenge exists within software supply chain security ​​— namely, fostering collaboration and transparency between software producers and consumers. The positive feedback and strong demand we've seen from our early customers made it crystal clear: This is where we need to focus.

This new opportunity demands a company and brand that meet the moment. To that end, we’re momentarily stepping back into stealth mode, only to emerge with a vibrant new identity, and a groundbreaking product very soon at root.io. Over the next few months, we'll be laser-focused on working with design partners and building up the product, making sure we're right on the mark with what our customers need.

Stay informed and up-to-date with our latest developments at root.io. Discover the details about the end of life for Slim services, effective March 31, 2024, by clicking here.

Blog

The Slim Blog

Discover the latest research, tutorials, and tools for collaboratively securing your software supply chain.
Custom News Image for Blog
Slim Services EOL: An Update for Slim.AI Users

Slim Services EOL: An Update for Slim.AI Users

As part of our transition to the next phase of our journey, we will discontinue Slim.AI services on 3/31/2024
Farewell, Slim — Transitioning to a new, bigger mission! 

Farewell, Slim — Transitioning to a new, bigger mission! 

I'm excited to share some big news from Slim.AI. We're taking a bold new direction, focusing all our energy on software supply chain security.
Container Security in the Era of the SEC Cybersecurity Rules

Container Security in the Era of the SEC Cybersecurity Rules

Exploring the Impact of SEC Cybersecurity Rules on CISOs: Strategies for Effective Container Security and Vulnerability Management in Public Companies
Our 3rd Annual Container Report

Our 3rd Annual Container Report

The 2023 Container Report was created in partnership with ESG and reveals container vulnerability management trends, concerns and opportunities to implement in 2024.
Terrapin Attack Has Left the Station

Terrapin Attack Has Left the Station

Watching the world’s top public containers for SSH vulnerabilities CVE-2023-48795, CVE-2023-46445, and CVE-2023-46446
Getting Started With Slim’s Shield Orb for CircleCI

Getting Started With Slim’s Shield Orb for CircleCI

Slim.AI's Shield Orb for CircleCI automates container hardening, enhancing security and efficiency in modern software development pipelines.
Slim.AI Security & Trust Update on SOC 2 Compliance

Slim.AI Security & Trust Update on SOC 2 Compliance

We are proudly announcing our achievement of SOC 2 compliance as a continued commitment to enhanced trust and security for our customers.
A CURL your toes fright fest: CVE-2023-38545 two weeks later

A CURL your toes fright fest: CVE-2023-38545 two weeks later

A look at cURL’s most recent security flaw shows that 33% of top public images remain vulnerable two weeks later.
A Guide to Patching Vulnerabilities ASAP

A Guide to Patching Vulnerabilities ASAP

Having an effective patching strategy in place is just as critical as having a vulnerability detection routine.
Slim joins AWS Global Startup Program as a Verified Partner

Slim joins AWS Global Startup Program as a Verified Partner

Slim has joined the AWS Partner Network’s famed Global Startup Program as a Verified partner.
Securing the Software Supply Chain with SLSA and Slim

Securing the Software Supply Chain with SLSA and Slim

Leveraging Slim helps to keep teams aligned with SLSA compliance and, in turn, increases your team’s velocity.
Reachability: A Focus on Prioritization

Reachability: A Focus on Prioritization

The Slim Platform and CLI tool have new features available to teams for vulnerability management and container optimization.
Slim Adds Vulnerability Prioritization Features for Cloud-Native Teams

Slim Adds Vulnerability Prioritization Features for Cloud-Native Teams

A new platform functionality that includes vulnerability reachability data, a new dashboard, and burndown charts.
Meeting the Security and Compliance Demands of Fortune 50 Companies

Meeting the Security and Compliance Demands of Fortune 50 Companies

Slim helps SRA meet customer compliance demands and requires very little investment on the front end to prove its value.
The Rundown on Vulnerability Scanning

The Rundown on Vulnerability Scanning

Learn more about how Slim is helping organizations scan and secure their containers.
CLI Enhancements for Automated Container Hardening

CLI Enhancements for Automated Container Hardening

Slim.AI announces new platform functionality that includes selective hardening by layer, vulnerability scanning from CLI with local output, and improved error handling.
Our Community Images Repo

Our Community Images Repo

Slim.AI is making our Community Images Repository available on GitHub to demonstrate Container Hardening on common tech stacks
The Package Popularity Trap

The Package Popularity Trap

Widely-used software packages appear to pose the greatest security risks according to container vulnerability scanners, but closer examination tells another story.
BigID Automates Container Security to Reduce Vulnerabilities and Maximize Security Posture

BigID Automates Container Security to Reduce Vulnerabilities and Maximize Security Posture

Protecting personal data is more important than ever. See how BigID uses Slim.AI to secure their software from inside out.
In the Media: The Latest Slim.AI Updates

In the Media: The Latest Slim.AI Updates

Take a look at our Latest Mentions in the News Regarding our Partnerships, Advisory Board, Early Access Program, and Docker Extension
How to Find, Fix, and Prioritize Vulnerabilities in Your Docker Container Image

How to Find, Fix, and Prioritize Vulnerabilities in Your Docker Container Image

Strategies for addressing a large volume of vulnerabilities in a container environment.
Introducing Slim's Scanner Orb for CircleCI

Introducing Slim's Scanner Orb for CircleCI

Get vulnerability and container composition analysis with every new container build.
Securing your Wordpress Build

Securing your Wordpress Build

How to secure a simple MySQL-Wordpress stack for deployment, and address any challenging and nuanced steps along the way.
Jit Reduces Container Size 90% And Cuts Bootstrap Time in Half

Jit Reduces Container Size 90% And Cuts Bootstrap Time in Half

DevSecOps platform achieves a step change in DevX with minimal integration effort
The Evolution of DockerSlim: New Name, New Capabilities and Closer Alignment with the Cloud Native Ecosystem

The Evolution of DockerSlim: New Name, New Capabilities and Closer Alignment with the Cloud Native Ecosystem

Slim is growing and adding support for new container tools and infrastructure.
5 Best Practices Production-Ready Containers

5 Best Practices Production-Ready Containers

Knowing what’s in a container is critical to securing your software supply chain.
5 Ways Slim Containers Save You Money

5 Ways Slim Containers Save You Money

Do slim containers really save you money on your cloud bill? Are there cost advantages to smaller containers? Find out here.
Increasing Your CI/CD Velocity with Slim Containers

Increasing Your CI/CD Velocity with Slim Containers

We’ll explain what Slim Containers are, how they speed up the build process, and how they can improve the efficiency of your testing.
2022 Public Container Report

2022 Public Container Report

Vulnerabilities continue to increase and developers are struggling to keep up.
Why Developers Shouldn't Have to Be Infrastructure Experts, Too

Why Developers Shouldn't Have to Be Infrastructure Experts, Too

Simplifying processes required to containerize and deploy cloud-native apps.
Are Scratch Containers More Secure?

Are Scratch Containers More Secure?

We dive into the intricacies of whether or not you should build a container from scratch, or use a tool like DockerSlim to harden your containers.
Container Insights: Dissecting the World's Most Popular Containers

Container Insights: Dissecting the World's Most Popular Containers

Join Ayse Kaya in this series, as she creates her 2022 Container Report Chalk Full of Important Security Findings for Developers.
Building SlimToolkit into a Jenkins Pipeline

Building SlimToolkit into a Jenkins Pipeline

A step by step tutorial on building SlimToolkit into your CI/CD pipeline.
Clarifying the Complex: Meet Ivan Velichko, Container Dude at Slim.AI

Clarifying the Complex: Meet Ivan Velichko, Container Dude at Slim.AI

Ivan recently joined the team at Slim.AI, and we sat down with him to learn more about the path that led him here.
Five Things You Should Never Ship to Production in a Container

Five Things You Should Never Ship to Production in a Container

Here is our take on five things to avoid when creating a container or shipping it to production.
5 Most Commonly Asked SlimToolkit Questions

5 Most Commonly Asked SlimToolkit Questions

We enlisted SlimToolkit expert and Slim.AI Developer Experience Engineer to dive into how container slimming works.
The 4th S of Software Supply Chain Security

The 4th S of Software Supply Chain Security

An approach to Front Line Software Supply Chain Security (SSCS) including SBOMs, Signing, Slimming and Sharing.
Containerizing Python Apps for Lambda

Containerizing Python Apps for Lambda

A tutorial on deploying AWS Lambda using containers, Python edition.
Improving the Developer Experience When Adopting Cloud-Native Best Practices

Improving the Developer Experience When Adopting Cloud-Native Best Practices

Slim.AI and PaymentWorks teamed up to create an amazing and scalable solution for managing containers across their organization.
Slim.AI Docker Extension for Docker Desktop

Slim.AI Docker Extension for Docker Desktop

How to access our Docker Extension in Docker Desktop and try it for yourself.
From Open Source to Open Design our Journey Building our First Ever Docker Desktop Extension

From Open Source to Open Design our Journey Building our First Ever Docker Desktop Extension

The Design behind our Docker Extension.
The DockerSlim Origin Story

The DockerSlim Origin Story

How DockerSlim got its start at Docker's Global Hack Day, and the creation of Slim.AI.
Slimming a Rails Application with SlimToolkit

Slimming a Rails Application with SlimToolkit

Dissect a simple Rails application container using SlimToolkit to analyze, optimize, and deploy your product more quickly.
Using AppArmor and SecComp Profiles for Security Audits

Using AppArmor and SecComp Profiles for Security Audits

Conduct better container security audits using tools like SecComp, NGINX, and Docker.
In the Media: Slim.AI Series A of $31M

In the Media: Slim.AI Series A of $31M

A sincere thank you to our community of developers and early adopters that have been with us on this growth journey.
Integrate Testing into Your Container Pipeline

Integrate Testing into Your Container Pipeline

A closer look at testing within container pipelines, CI/CD, software delivery, and containerization
Growth and Gratitude: Series A Announcement

Growth and Gratitude: Series A Announcement

Sincere thanks to our community of developers and early adopters.
Where Shift Left Goes Wrong

Where Shift Left Goes Wrong

As if cloud infrastructure were not complex enough, there’s a whole new complication to contend with: Shifting left.
5 Common Container Exploits

5 Common Container Exploits

From Malware, to Access Control Risks, and Beyond
Automatically Reduce your Docker Container Size Using SlimToolkit

Automatically Reduce your Docker Container Size Using SlimToolkit

A REST Web Service example using Python/Flask
What SlimToolkit Users Get Out of Slim's SaaS Platform

What SlimToolkit Users Get Out of Slim's SaaS Platform

Scaling Your Container Game
Creating a Container Pipeline with GitLab CI

Creating a Container Pipeline with GitLab CI

There's an easier way to ship containers and automatically secure them before production.
Getting Started with Multi-Container Apps

Getting Started with Multi-Container Apps

Up your container game with Docker Compose, data API connections and testing.
Five Proven Ways to Debug a Container

Five Proven Ways to Debug a Container

A guide for debugging your software when things just are not working
Slim.AI Announces KubeCon+CloudNativeCon `21 Schedule

Slim.AI Announces KubeCon+CloudNativeCon `21 Schedule

Hybrid schedule focus on Twitch
Join Us At Open Source Summit `21

Join Us At Open Source Summit `21

Virtual or in Seattle, we'll be there
In the Media: SlimToolkit and Slim.AI

In the Media: SlimToolkit and Slim.AI

The latest mentions of Slim.AI and SlimToolkit (previously DockerSlim) in the media.
Meet Martin Wimpress, Head of Community at Slim.AI

Meet Martin Wimpress, Head of Community at Slim.AI

Martin talks developer experience, community development and personal projects
Q&A With Priceline CTO Marty Brodbeck

Q&A With Priceline CTO Marty Brodbeck

Discuss container workflows, DevX, and cloud-native at scale
Serverless Applications and Docker

Serverless Applications and Docker

How to Scale the Latest Trend in Infrastructure
Container of the Week: Python & Flask

Container of the Week: Python & Flask

Our weekly breakdown of a popular container
What's in your container?

What's in your container?

Why Docker Layers matter for container optimization in cloud-native development
Explore and Analyze a Docker container with SlimToolkit's X-Ray

Explore and Analyze a Docker container with SlimToolkit's X-Ray

A hands-on keyboard guide to understanding container composition.
What We’re Building at Slim.AI

What We’re Building at Slim.AI

A DevX Platform for Container Management
Why Don't We Practice Container Best Practices

Why Don't We Practice Container Best Practices

Container best practices are easy to understand, but difficult to implement.
Reducing Docker Image Size - Slimming vs Compressing

Reducing Docker Image Size - Slimming vs Compressing

Know the difference between compressing images and slimming images for a high-performing and secure cloud-development process.
Unpacking Culture That Works

Unpacking Culture That Works

How to build a culture and team in a modern, purpose-built organization
Why We Founded Slim.AI

Why We Founded Slim.AI

Developers Just Want to Write Code. Here's how Slim.AI is Helping.

Embarking on a New Journey

Farewell, Slim — Transitioning to a new and larger mission!

We're excited to share some big news from Slim.AI. We're taking a bold new direction, focusing all our energy on software supply chain security, now under our new name root.io. To meet this opportunity head-on, we’re building a solution focused on transparency, trust, and collaboration between software producers and consumers.

When we started Slim.AI, our goal was to help developers make secure containers. But as we dug deeper with our early adopters and key customers, we realized a bigger challenge exists within software supply chain security ​​— namely, fostering collaboration and transparency between software producers and consumers. The positive feedback and strong demand we've seen from our early customers made it crystal clear: This is where we need to focus.

This new opportunity demands a company and brand that meet the moment. To that end, we’re momentarily stepping back into stealth mode, only to emerge with a vibrant new identity, and a groundbreaking product very soon at root.io. Over the next few months, we'll be laser-focused on working with design partners and building up the product, making sure we're right on the mark with what our customers need.

Stay informed and up-to-date with our latest developments at root.io. Discover the details about the end of life for Slim services, effective March 31, 2024, by clicking here.