This document discusses software supply chain security and container deployment best practices. It recommends using continuous integration/continuous delivery pipelines to automate building, testing, and deploying container images. The document also advocates for scanning container images for vulnerabilities, digitally signing images, and controlling access to images and runtimes using policies. Canary and blue/green deployments are introduced as strategies to reduce risk when deploying changes.