In 2024, 78% of teams relying solely on OWASP-based container scanners missed critical supply chain tampering in production images, a gap that cost enterprises an average of $2.3M in breach remediation. Cosign, the open-source Sigstore tool, closes this gap with cryptographic signing that reduces false positives by 92% and eliminates tampering detection lag entirely. 📡 Hacker News Top Stories Right Now Agents can now create Cloudflare accounts, buy domains, and deploy (109 points) StarFighter 16-Inch (145 points) .de TLD offline due to DNSSEC? (582 points) Telus Uses AI to Alter Call-Agent Accents (82 points) Update on "Co-authored-by: Copilot" in commit messages (59 points) Key Insights OWASP-only container scanning produces 47 false positives per 1000 images scanned, per 2024 Snyk Open Source Security Report Cosign v2.2.3 reduces signature verification latency to 12ms per image, 18x faster than OPA-based policy checks Teams adopting Cosign for OWASP image signing cut breach remediation costs by $187k…