Redis

dhi.io/redis

Redis 8.8.x (fips, dev)

CIS
FIPS
STIG
linux/amd64
alpine 3.23
Tags:

8-alpine3.23-fips-dev, 8.8-alpine3.23-fips-dev, 8.8.0-alpine3.23-fips-dev

Index digest:

sha256:f67bca5435d1895f040c083e0aa48e9ef7e104e29324a3697d75aeceaca801bb

Manifest digest:

sha256:dbbe3ea46b8a783ae9adc2eb09c68621daf49fa5fbfcf9e647dffe95967da5aa

Size

27.05 MB

Last pushed

13 hours ago

Vulnerabilities

0
0
0
0
0

Support

Active

Overview

Docker Hardened Images include comprehensive security attestations that verify the image's build process, contents, and security posture. This image is built using SLSA Build Level 3 practices. Additionally, this image includes a source attestation that links to a corresponding source image containing all build materials. The following attestations are available and can be verified using cosign.

Docker's DHI public key is available at https://registry.scout.docker.com/keyring/dhi/latest.pub and also archived at https://github.com/docker-hardened-images/keyring.

How to verify attestations

1. List all available attestations

docker scout attest list dhi.io/redis:8-alpine3.23-fips-dev

2. Verify a specific attestation

For example, to verify the SLSA provenance attestation:

docker scout attest get dhi.io/redis:8-alpine3.23-fips-dev --predicate-type https://slsa.dev/provenance/v0.2 --verify

Attestations

All attestations are signed and can be verified with cosign.

PredicatePredicate typeReference
CycloneDX SBOM v1.6https://cyclonedx.org/bom/v1.6dhi.io/redis@sha256:b54cdc029220ca35907c43cf6c11fb3b15f979d4b72d52787a3ec589f801b09c
Changelog v0.1https://docker.com/dhi/changelog/v0.1dhi.io/redis@sha256:bd2d1b7261945980d1eba1ee6669e466dfcd521902b681c0c82299aa4ca5c13a
FIPS compliance v0.1https://docker.com/dhi/fips/v0.1dhi.io/redis@sha256:bf75056656c00af7c29cde91b8323e01004bb164a5d19d871bbe9480bb65e09c
DHI Image Sources v0.1https://docker.com/dhi/source/v0.1dhi.io/redis@sha256:254c4522eb20bef4f84aedee7df28d1d028f646e3176e3e9d764aa3c6915f747
STIG scan v0.1https://docker.com/dhi/stig/v0.1dhi.io/redis@sha256:97eef6891333f93a3d95c9868acc0e857575c188ed80241278e766c14ad6804b
CVEs v0.2https://in-toto.io/attestation/vulns/v0.2dhi.io/redis@sha256:e147cf24b21ab2907a913da1682e2c23ed79af38260eca19b82e65a7ef1d1488
VEX v0.2.0https://openvex.dev/ns/v0.2.0dhi.io/redis@sha256:ed4a9e3d77cc8ebfd64cb250403394bf01e4e66ac0966b7843666ea960a7b1f9
Scout provenance v0.1https://scout.docker.com/provenance/v0.1dhi.io/redis@sha256:980cb50ec3f3ca266416e93e1988f36d7c5bd204aaafdf0530f0a2f002f65f9d
Scout SBOM v0.1https://scout.docker.com/sbom/v0.1dhi.io/redis@sha256:c12b6a15b9091cd9c230ed8cf522c3451031b08ab53d6e644da67f241202ecbd
Secrets scan v0.1https://scout.docker.com/secrets/v0.1dhi.io/redis@sha256:5407fceab3b342f11edc0cb701f118f7210a5476c112d1d87f6a7a9f8d9b93bf
Tests v0.1https://scout.docker.com/tests/v0.1dhi.io/redis@sha256:c4f9af3e19c3580c7d558e3ac64a489539bcb64fb52cc229f4d353861f873a40
Virus scan v0.1https://scout.docker.com/virus/v0.1dhi.io/redis@sha256:42b9b9a0575a56de78bd8d1966646b2c3cdb60e05cbd74cb3fbf8dd4cc776806
CVEs v0.1https://scout.docker.com/vulnerabilities/v0.1dhi.io/redis@sha256:78507af25020bc291eee2336783d3d11384b667a5d4fbe0aa203511b8c1d179d
SLSA provenance v0.2https://slsa.dev/provenance/v0.2dhi.io/redis@sha256:0fe16be2fcb0cb8a86d21dbe8198396fe7a80b214c8ffcd4c5f814bc096860c6
SLSA provenance v1https://slsa.dev/provenance/v1dhi.io/redis@sha256:c8653ac36db99398e20213bf255da7cbd9849eec3ae6bfc4ed9ce01b9b04eeb5
SLSA verification summary v1https://slsa.dev/verification_summary/v1dhi.io/redis@sha256:6e75caf44c03a13ea31422f423b73aa20cf8e31ffd00f95e9912b99f75172963
SPDX SBOMhttps://spdx.dev/Documentdhi.io/redis@sha256:7655a032392299f7e44965b1334d74586e4f1771bb9be810d979368cac7610ce