Container images are packaged runtime environments
Dependencies are included
Security issues will be discovered in your dependencies
You must scan your dependencies
You must build your images regularly
Clair, JFrog Xray, GitHub Security Alerts …any many more!