Redis

dhi.io/redis

Redis 8.6.x (fips, dev)

CIS
FIPS
STIG
linux/amd64
alpine 3.23
Tags:

8.6-alpine3.23-fips-dev, 8.6.4-alpine3.23-fips-dev

Index digest:

sha256:315c77b99911214b5c6e25eb256ae925aa5b3c05ba69f33b6aa72084ba19d988

Manifest digest:

sha256:5b6b19300e5ef5277ca1f7de7837ca137b85eae65803b52f9c1fdfb7ce60ea3e

Size

26.46 MB

Last pushed

13 hours ago

Vulnerabilities

0
0
0
0
0

Support

Active

Overview

Docker Hardened Images include comprehensive security attestations that verify the image's build process, contents, and security posture. This image is built using SLSA Build Level 3 practices. Additionally, this image includes a source attestation that links to a corresponding source image containing all build materials. The following attestations are available and can be verified using cosign.

Docker's DHI public key is available at https://registry.scout.docker.com/keyring/dhi/latest.pub and also archived at https://github.com/docker-hardened-images/keyring.

How to verify attestations

1. List all available attestations

docker scout attest list dhi.io/redis:8.6-alpine3.23-fips-dev

2. Verify a specific attestation

For example, to verify the SLSA provenance attestation:

docker scout attest get dhi.io/redis:8.6-alpine3.23-fips-dev --predicate-type https://slsa.dev/provenance/v0.2 --verify

Attestations

All attestations are signed and can be verified with cosign.

PredicatePredicate typeReference
CycloneDX SBOM v1.6https://cyclonedx.org/bom/v1.6dhi.io/redis@sha256:7f20b4a46e201f7f0e9aca0df12fb5f58c7d85cf591a33439accdda608c21cbe
Changelog v0.1https://docker.com/dhi/changelog/v0.1dhi.io/redis@sha256:675569457035dba1ab09d64a0b91a950d5dd4377da2d03ea58d5fda79438f05b
FIPS compliance v0.1https://docker.com/dhi/fips/v0.1dhi.io/redis@sha256:ec4939bde0323086d2c18cd479d918b61550a597072cec9c85e1ac1cb3521f2e
DHI Image Sources v0.1https://docker.com/dhi/source/v0.1dhi.io/redis@sha256:7d79287c5ec0919e1835798d2e4bfcfd69cbcf92c79b61a74232fc068b0e19cc
STIG scan v0.1https://docker.com/dhi/stig/v0.1dhi.io/redis@sha256:0511e78f4bbe85d23bc1a1f7e76ad9e4a510ac111ca2d8e963bf6a91ab0c179a
CVEs v0.2https://in-toto.io/attestation/vulns/v0.2dhi.io/redis@sha256:cee90ed49992a25058090d8970cfb09916d488217f6f0401596bae34feafd1d7
VEX v0.2.0https://openvex.dev/ns/v0.2.0dhi.io/redis@sha256:76089b988e478e0e487f510753f3410cc17398105ffd9cdee4903e79c223a2aa
Scout provenance v0.1https://scout.docker.com/provenance/v0.1dhi.io/redis@sha256:a5e6f2ee5ea97e317a2ce19b735b989dbd3512557ade54255d9381503fe59fcc
Scout SBOM v0.1https://scout.docker.com/sbom/v0.1dhi.io/redis@sha256:9fb130775811a003198cea0f2cc5831eaaaf4804a459bb2faada374568a64758
Secrets scan v0.1https://scout.docker.com/secrets/v0.1dhi.io/redis@sha256:260aa650a477c3251c1c86e0f39b7116a74b96ea9a52f566e1a799c90650384a
Tests v0.1https://scout.docker.com/tests/v0.1dhi.io/redis@sha256:6389ae3df047f26a5bb97ad866e070523b70149f5d7bbf54cbe1dc72ed97d882
Virus scan v0.1https://scout.docker.com/virus/v0.1dhi.io/redis@sha256:b94df0c2191729d008d18af136c2e753c51fcf5358cb30cd0e117a5917a12638
CVEs v0.1https://scout.docker.com/vulnerabilities/v0.1dhi.io/redis@sha256:c1bab76628db5cef52f5157c323787a4dea4bf824f3826cf8e7bc0c82e17019f
SLSA provenance v0.2https://slsa.dev/provenance/v0.2dhi.io/redis@sha256:eef9d39fd6ed3d8a5b37aa87702caef2815e8d0b44b36de90c7f3f503ba6136b
SLSA provenance v1https://slsa.dev/provenance/v1dhi.io/redis@sha256:2db520e4aa0fa1d50be437547494f5c62f24f27a54742049b636a1738bf6cacd
SLSA verification summary v1https://slsa.dev/verification_summary/v1dhi.io/redis@sha256:c8b133e2f77182bcb451b5edf55d26a1522815edc760c5a57a12bf954c6522c5
SPDX SBOMhttps://spdx.dev/Documentdhi.io/redis@sha256:efb7310f07f476edf06ec00d36cbb86fc35b8fa9a5d28712d82c57348058c1cb