When building a secure container image, which two elements should you include in the build process whenever possible? (Choose two.)