{"id":65434,"date":"2021-09-21T14:16:10","date_gmt":"2021-09-21T14:16:10","guid":{"rendered":"https:\/\/staging.checkmarx.com\/?p=65434"},"modified":"2025-06-09T11:53:48","modified_gmt":"2025-06-09T09:53:48","slug":"a-developers-list-of-key-container-security-risks","status":"publish","type":"post","link":"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/","title":{"rendered":"A Developer\u2019s List of Key Container Security Risks"},"content":{"rendered":"

There are a variety of excellent reasons to use containers. They\u2019re more agile and consume fewer resources than virtual machines. They provide more flexibility and security than running applications directly on the OS. They are easy to orchestrate at massive scale using platforms like Kubernetes.<\/p>\n\n\n\n

At the same time, however, containers present some significant challenges, not least in the realm of security. Although the benefits of containers outweigh the security risks in most cases, it\u2019s important to assess the security problems that containers can introduce to your software stack and take steps to remediate them.<\/p>\n\n\n\n

Toward that end, this article lists the top seven security risks<\/strong> that containers may pose, along with tips on addressing them.<\/p>\n\n\n\n

\n<\/a>Risk 1: Running Containers from Insecure Sources<\/h2>\n\n\n\n

Part of the reason containers have become so popular is that admins can pull a container from a public registry and deploy it with just a few commands.<\/p>\n\n\n\n

That\u2019s great from the perspective of achieving agility and speed. But from a security point of view, it can pose problems if the container images that you pull contain malware.<\/p>\n\n\n\n

This risk is not just theoretical. Hackers have actively uploaded malicious container images<\/a> to Docker Hub (the most widely used public container registry) and given them names intended to trick developers into believing they are images from a trusted source. Indeed, according to one source, no fewer than half of all images on Docker Hub<\/a> contain at least one vulnerability, which is an astounding figure.<\/p>\n\n\n\n

The lesson here is that it\u2019s absolutely vital to check and double-check the origins of container images that you pull, especially when dealing with public registries.<\/p>\n\n\n\n

\n<\/a>Risk 2: Exposing Sensitive Data through Container Images<\/h2>\n\n\n\n

The risks associated with container registries can run in the opposite direction, too: you could upload data to a private registry that you assume is secure, only to discover that your registry \u2013 and the sensitive data you stored in it \u2013 are actually accessible to the world at large.<\/p>\n\n\n\n

That\u2019s precisely what happened to Vine<\/a> in 2016. The company uploaded a container image that included source code for its entire platform into a registry that was not properly secured. The registry\u2019s URL hadn\u2019t been publicly shared, but anyone who could guess the URL had unfettered, no-password-required access to the images in it.<\/p>\n\n\n\n

Mistakes like this are easier to make than you might imagine. When you\u2019re juggling dozens or even hundreds of container images, it\u2019s easy to fall into the trap of accidentally placing a sensitive image in an unsecured registry, or even forgetting that an image contains sensitive data in the first place.<\/p>\n\n\n\n

\n<\/a>Risk 3: Placing Too Much Faith in Image Scanning<\/h2>\n\n\n\n

Image scanners, which can automatically determine whether containers contain known vulnerabilities, are a vital tool for helping to secure containers.<\/p>\n\n\n\n

But scanners are only one type of tool, and they\u2019re hardly a complete guarantee against all types of risks. They work by matching the contents of container images against lists of known vulnerabilities, which means they won\u2019t discover security flaws that have not yet been publicly disclosed. Container scanners<\/a> may also overlook vulnerabilities if container images are structured in unusual ways or their contents are not labeled in the way the scanner expects.<\/p>\n\n\n\n

The takeaway: by all means, use container scanners. But never assume that an image is secure just because your scanner deems it so. Take additional steps to secure the container, such as monitoring the runtime environment for signs of security issues.<\/p>\n\n\n\n

\n<\/a>Risk 4: Broader Attack Surface<\/h2>\n\n\n\n

Running containers requires more tools and software layers than running a conventional application. In this respect, containers create a broader attack surface.<\/p>\n\n\n\n

When you deploy containers, you have to worry about the security not just of the application and the operating system that hosts it, but also of the container runtime, the orchestrator, and possibly a variety of plugins that the orchestrator uses to manage things like networking and storage. If you run \u201csidecar\u201d containers to help with tasks like logging, those become a security risk, too.<\/p>\n\n\n\n

All of the above can be managed, but it requires a deeper investment in security \u2013 and a broader set of security tooling \u2013 than you\u2019d use with a traditional, non-containerized application stack.<\/p>\n\n\n\n

\n<\/a>Risk 5: Bloated Base Images<\/h2>\n\n\n\n

Container base images are images that developers use as the foundation for creating custom images. Typically, a base image is some kind of operating system, along with any common libraries or other resources required to run the types of applications you are deploying.<\/p>\n\n\n\n

It can be tempting to pack more than the bare minimum into base images. You never know what you may need to run your applications in the future, so you may decide to include libraries that aren\u2019t strictly necessary for your applications today, for instance.<\/p>\n\n\n\n

But the more you include in your base images, the greater the risk of a vulnerability that allows your containers or applications to be compromised. A best practice is to build base images that are as minimal as possible, even if that means updating them periodically or maintaining different base images for different applications.<\/p>\n\n\n\n

\n<\/a>Risk 6: Lack of Rigid Isolation<\/h2>\n\n\n\n

Containers should<\/em> isolate applications at the process level. But the fact is that they don\u2019t always do that perfectly well. At the end of the day, containers share the same kernel, and a bug in the runtime or a misconfiguration in the environment could allow a process running inside one container to access resources that live in other containers, or even gain root access to the host<\/a>.<\/p>\n\n\n\n

This is why it\u2019s extra important in the case of containers to vet your configurations for security as well as monitor runtime environments for malicious activity. There is simply a greater risk of privilege escalation and similar issues with containers than there is with virtual machines.<\/p>\n\n\n\n

\n<\/a>Risk 7: Less Visibility<\/h2>\n\n\n\n

The harder it is to observe and monitor an environment, the harder it is to secure it. And when it comes to containers, observability and monitoring are especially difficult.<\/p>\n\n\n\n

It\u2019s not that the data you need to track containers doesn\u2019t exist. It\u2019s that that data is spread across multiple locations \u2013 inside containers, on Kubernetes worker nodes, on Kubernetes master nodes \u2013 and that it\u2019s not always persistent (logs inside containers will disappear forever when the container instance shuts down, unless you move them somewhere else first).<\/p>\n\n\n\n

Here again, these challenges are manageable. But they require a more sophisticated strategy for keeping track of what is happening inside your environment than you would typically have with a simpler type of application stack.<\/p>\n\n\n\n

\n<\/a>Conclusion: Containers Are Great, but They Are Harder to Secure<\/h2>\n\n\n\n

Again, none of the security risks described above are a reason not to use containers at all. But they are reminders that with the great agility that containers provide comes extra responsibility. Before you go pulling images from a random Docker Hub registry and calling it a day, be sure you know where your images came from, what\u2019s in them, and which security risks may arise when they run.<\/p>\n\n\n

\n
\"\"<\/figure>\n<\/div>\n\n\n

Chris Tozzi <\/strong>has worked as a journalist and Linux systems administrator. He has particular interests in open-source, agile infrastructure, and networking. He is Senior Editor of content and a DevOps Analyst at Fixate IO. His latest book, For Fun and Profit: A History of the Free and Open-Source Software Revolution<\/em><\/a>, was published in 2017.<\/p>\n\n\n\n

<\/p>\n\n\n\n

<\/p>\n\n\n\n

<\/p>\n\n\n\n

Download our Ultimate Guide to SCA here<\/a>.<\/h2>\n\n\n\n
\"\"<\/a><\/figure>","protected":false},"excerpt":{"rendered":"

There are a variety of excellent reasons to use containers. They\u2019re more agile and consume fewer resources than virtual machines. They provide more flexibility and security than running applications directly on the OS. They are easy to orchestrate at massive scale using platforms like Kubernetes. At the same time, however, containers present some significant challenges, […]<\/p>\n","protected":false},"author":15,"featured_media":65437,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[84,1293],"tags":[142,191,382,190,381],"class_list":["post-65434","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog","category-container-security-code-to-cloud","tag-application-security-testing","tag-ast","tag-container-security","tag-english","tag-list-of-risks"],"acf":[],"yoast_head":"\nA Developers List of 7 Key Container Security Risks - Checkmarx.com<\/title>\n<meta name=\"description\" content=\"Although the benefits of containers outweigh the security risks in most cases, it\u0092s important to assess the security problems that containers can introduce to your software stack and take steps to remediate them.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"A Developer\u2019s List of Key Container Security Risks\" \/>\n<meta property=\"og:description\" content=\"Although the benefits of containers outweigh the security risks in most cases, it\u2019s important to assess the security problems that containers can introduce to your software stack and take steps to remediate them.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/\" \/>\n<meta property=\"og:site_name\" content=\"Checkmarx\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis\" \/>\n<meta property=\"article:published_time\" content=\"2021-09-21T14:16:10+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-06-09T09:53:48+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2021\/09\/shutterstock_501303862.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1024\" \/>\n\t<meta property=\"og:image:height\" content=\"512\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"Stephen Gates\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:title\" content=\"A Developer\u2019s List of Key Container Security Risks\" \/>\n<meta name=\"twitter:description\" content=\"Although the benefits of containers outweigh the security risks in most cases, it\u2019s important to assess the security problems that containers can introduce to your software stack and take steps to remediate them.\" \/>\n<meta name=\"twitter:image\" content=\"https:\/\/checkmarx.com\/wp-content\/uploads\/2021\/09\/shutterstock_501303862.png\" \/>\n<meta name=\"twitter:creator\" content=\"@checkmarx\" \/>\n<meta name=\"twitter:site\" content=\"@checkmarx\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Stephen Gates\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"6 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/\"},\"author\":{\"name\":\"Stephen Gates\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/1ea38abd0315d0956c3c9c173724345b\"},\"headline\":\"A Developer\u2019s List of Key Container Security Risks\",\"datePublished\":\"2021-09-21T14:16:10+00:00\",\"dateModified\":\"2025-06-09T09:53:48+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/\"},\"wordCount\":1248,\"publisher\":{\"@id\":\"https:\/\/checkmarx.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2021\/09\/shutterstock_624208910.png\",\"keywords\":[\"Application Security Testing\",\"AST\",\"Container Security\",\"English\",\"List of Risks\"],\"articleSection\":[\"Blog\",\"Container Security\/Code-to-Cloud\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/\",\"url\":\"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/\",\"name\":\"A Developers List of 7 Key Container Security Risks - Checkmarx.com\",\"isPartOf\":{\"@id\":\"https:\/\/checkmarx.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2021\/09\/shutterstock_624208910.png\",\"datePublished\":\"2021-09-21T14:16:10+00:00\",\"dateModified\":\"2025-06-09T09:53:48+00:00\",\"description\":\"Although the benefits of containers outweigh the security risks in most cases, it\u0092s important to assess the security problems that containers can introduce to your software stack and take steps to remediate them.\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/#primaryimage\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2021\/09\/shutterstock_624208910.png\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2021\/09\/shutterstock_624208910.png\",\"width\":1024,\"height\":512},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/checkmarx.com\/#website\",\"url\":\"https:\/\/checkmarx.com\/\",\"name\":\"Checkmarx\",\"description\":\"The world runs on code. We secure it.\",\"publisher\":{\"@id\":\"https:\/\/checkmarx.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/checkmarx.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/checkmarx.com\/#organization\",\"name\":\"Checkmarx\",\"url\":\"https:\/\/checkmarx.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg\",\"width\":1,\"height\":1,\"caption\":\"Checkmarx\"},\"image\":{\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis\",\"https:\/\/x.com\/checkmarx\",\"https:\/\/www.youtube.com\/user\/CheckmarxResearchLab\",\"https:\/\/www.linkedin.com\/company\/checkmarx\"]},{\"@type\":\"Person\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/1ea38abd0315d0956c3c9c173724345b\",\"name\":\"Stephen Gates\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/checkmarx.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_15.png\",\"contentUrl\":\"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_15.png\",\"caption\":\"Stephen Gates\"},\"url\":\"https:\/\/checkmarx.com\/author\/stephen\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"A Developers List of 7 Key Container Security Risks - Checkmarx.com","description":"Although the benefits of containers outweigh the security risks in most cases, it\u0092s important to assess the security problems that containers can introduce to your software stack and take steps to remediate them.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/","og_locale":"en_US","og_type":"article","og_title":"A Developer\u2019s List of Key Container Security Risks","og_description":"Although the benefits of containers outweigh the security risks in most cases, it\u2019s important to assess the security problems that containers can introduce to your software stack and take steps to remediate them.","og_url":"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/","og_site_name":"Checkmarx","article_publisher":"https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis","article_published_time":"2021-09-21T14:16:10+00:00","article_modified_time":"2025-06-09T09:53:48+00:00","og_image":[{"width":1024,"height":512,"url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2021\/09\/shutterstock_501303862.png","type":"image\/png"}],"author":"Stephen Gates","twitter_card":"summary_large_image","twitter_title":"A Developer\u2019s List of Key Container Security Risks","twitter_description":"Although the benefits of containers outweigh the security risks in most cases, it\u2019s important to assess the security problems that containers can introduce to your software stack and take steps to remediate them.","twitter_image":"https:\/\/checkmarx.com\/wp-content\/uploads\/2021\/09\/shutterstock_501303862.png","twitter_creator":"@checkmarx","twitter_site":"@checkmarx","twitter_misc":{"Written by":"Stephen Gates","Est. reading time":"6 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/#article","isPartOf":{"@id":"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/"},"author":{"name":"Stephen Gates","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/1ea38abd0315d0956c3c9c173724345b"},"headline":"A Developer\u2019s List of Key Container Security Risks","datePublished":"2021-09-21T14:16:10+00:00","dateModified":"2025-06-09T09:53:48+00:00","mainEntityOfPage":{"@id":"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/"},"wordCount":1248,"publisher":{"@id":"https:\/\/checkmarx.com\/#organization"},"image":{"@id":"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/#primaryimage"},"thumbnailUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2021\/09\/shutterstock_624208910.png","keywords":["Application Security Testing","AST","Container Security","English","List of Risks"],"articleSection":["Blog","Container Security\/Code-to-Cloud"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/","url":"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/","name":"A Developers List of 7 Key Container Security Risks - Checkmarx.com","isPartOf":{"@id":"https:\/\/checkmarx.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/#primaryimage"},"image":{"@id":"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/#primaryimage"},"thumbnailUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2021\/09\/shutterstock_624208910.png","datePublished":"2021-09-21T14:16:10+00:00","dateModified":"2025-06-09T09:53:48+00:00","description":"Although the benefits of containers outweigh the security risks in most cases, it\u0092s important to assess the security problems that containers can introduce to your software stack and take steps to remediate them.","inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/blog\/a-developers-list-of-key-container-security-risks\/#primaryimage","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2021\/09\/shutterstock_624208910.png","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2021\/09\/shutterstock_624208910.png","width":1024,"height":512},{"@type":"WebSite","@id":"https:\/\/checkmarx.com\/#website","url":"https:\/\/checkmarx.com\/","name":"Checkmarx","description":"The world runs on code. We secure it.","publisher":{"@id":"https:\/\/checkmarx.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/checkmarx.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/checkmarx.com\/#organization","name":"Checkmarx","url":"https:\/\/checkmarx.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/02\/logo-dark.svg","width":1,"height":1,"caption":"Checkmarx"},"image":{"@id":"https:\/\/checkmarx.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/Checkmarx.Source.Code.Analysis","https:\/\/x.com\/checkmarx","https:\/\/www.youtube.com\/user\/CheckmarxResearchLab","https:\/\/www.linkedin.com\/company\/checkmarx"]},{"@type":"Person","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/1ea38abd0315d0956c3c9c173724345b","name":"Stephen Gates","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/checkmarx.com\/#\/schema\/person\/image\/","url":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_15.png","contentUrl":"https:\/\/checkmarx.com\/wp-content\/uploads\/2024\/06\/avatar_15.png","caption":"Stephen Gates"},"url":"https:\/\/checkmarx.com\/author\/stephen\/"}]}},"_links":{"self":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/posts\/65434","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/users\/15"}],"replies":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/comments?post=65434"}],"version-history":[{"count":0,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/posts\/65434\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/media\/65437"}],"wp:attachment":[{"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/media?parent=65434"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/categories?post=65434"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/checkmarx.com\/wp-json\/wp\/v2\/tags?post=65434"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}