Docker Commandos
A narrative-driven container security workshop series where participants join the Black Forest Commandos to practice SBOMs, attestations, hardened images, VEX exemptions, Docker Bake, Cosign signing, and zero-day defense.
Docker Commandos is the workshop series. Black Forest Commandos is the elite team inside the story: Gord, Jack, Mina, Evie, and the rest of the characters who guide participants through container security missions.
The series is intentionally hands-on. Participants build a supply-chain security pipeline step by step: project initialization, SBOM generation, vulnerability scanning, hardened images, VEX exemptions, signed attestations, and zero-day runtime defense.
The name stays Docker Commandos for continuity with existing materials and because the workshop teaches practical Docker commands. The narrative team is now Black Forest Commandos to keep the character universe vendor-neutral while still making the technical scope clear.
Workshop Deliveries
Docker Commandos adapted for a Java audience at JCON Europe 2026. Supply chain security, SBOMs, and attestations — using Docker tooling with a Java project as the target.
Docker Commandos v1.5 at Rabobank, part of their Docker Champions program. Full supply-chain security pipeline from Docker Init to cryptographic signing and zero-day runtime defense.
The first private Docker Commandos workshop — v1.0 format delivered to the JobRad engineering team in Freiburg. Small group, fully hands-on.
The workshop that started it all. Over 100 people queued for 40 seats at WeAreDevelopers World Congress 2025. Covered Docker Init, Docker Bake, SBOMs, attestations, and Docker Scout.