Secure, Minimal Containers with Rockcraft & Chisel: A Practical Intro FOSSASIA Summit 2026

FOSSASIA Summit 2026 Sunday, 8 March, 2026 9:00 AM (Asia/Bangkok) To Tuesday, 10 March, 2026 7:30 PM (Asia/Bangkok)

Info Featured Schedule Speakers Exhibition

Secure, Minimal Containers with Rockcraft & Chisel: A Practical IntroCanonical’s ethos is based on the fact that open source has always been about freedom of choice and broad access. Anyone can use the software. Anyone can improve it. We want secure, reliable software to be available to everyone. Not just experts. Containers now sit at the center of modern application delivery. But, they also sit at the center of modern security risk. The main challenge is that most containers are shipped with unused packages and old dependencies, and so expose large attack surfaces. Most developers aren’t OS or security specialists, that’s why they need tools to easily build secure containers.Here, we introduce Rockcraft and Chisel, two Ubuntu-native, open source tools designed to make secure, minimal, and reproducible container images, and promoted by a rapidly growing community.<ul><li>Rockcraft is the tool that helps you build OCI-compliant “rocks”: declarative, reproducible container images with first-class integration with Chisel.</li><li>Chisel allows developers to build “slices” of the Ubuntu root filesystem, producing highly minimal, hardened images without compromising usability.</li></ul> This talk is beginner-friendly and practical. I will compare and demo this approach with familiar strategies like distroless images, slim variants, and `FROM scratch` builds. We’ll look at how Rockcraft + Chisel fit into this existing ecosystem, and where they shine. You can integrate them into existing software delivery pipelines, and democratize container security. Secure open source, made accessible to everyone.