Your development teams need to use diverse open-source operating systems in their Docker builds. When container images are published in your company's environment, they must be scanned for Common Vulnerabilities and Exposures (CVEs) without affecting development agility. You prefer using managed services where available. What is the recommended approach?