diff --git a/examples/Dockerfile.bad b/examples/Dockerfile.bad
new file mode 100644
index 0000000..f9de2e0
--- /dev/null
+++ b/examples/Dockerfile.bad
@@ -0,0 +1,5 @@
+# Intentionally insecure for demo purposes
+FROM node:latest
+RUN apt-get update && apt-get install -y curl
+# no USER set, runs as root
+# uses :latest tag and extra packages
diff --git a/examples/pod-insecure.yaml b/examples/pod-insecure.yaml
new file mode 100644
index 0000000..fd0e40a
--- /dev/null
+++ b/examples/pod-insecure.yaml
@@ -0,0 +1,14 @@
+# Intentionally insecure for demo purposes
+apiVersion: v1
+kind: Pod
+metadata:
+  name: insecure-pod
+spec:
+  hostNetwork: true
+  containers:
+    - name: app
+      image: nginx:latest
+      securityContext:
+        privileged: true
+        allowPrivilegeEscalation: true
+        runAsUser: 0