Redis

dhi.io/redis

Redis 8.8.x (fips)

CIS
FIPS
STIG
linux/amd64
alpine 3.23
Tags:

8-alpine3.23-fips, 8.8-alpine3.23-fips, 8.8.0-alpine3.23-fips

Index digest:

sha256:990054d017edaa2e064a3995bcfe6dda131b8d8d09727ad8450fb3148e3b7849

Manifest digest:

sha256:8e517d94598866b8646ca8d5a29e858dea3be19b5b055562268aa994a8cb5ed2

Size

25.14 MB

Last pushed

14 hours ago

Vulnerabilities

0
0
0
0
0

Support

Active

Overview

Docker Hardened Images include comprehensive security attestations that verify the image's build process, contents, and security posture. This image is built using SLSA Build Level 3 practices. Additionally, this image includes a source attestation that links to a corresponding source image containing all build materials. The following attestations are available and can be verified using cosign.

Docker's DHI public key is available at https://registry.scout.docker.com/keyring/dhi/latest.pub and also archived at https://github.com/docker-hardened-images/keyring.

How to verify attestations

1. List all available attestations

docker scout attest list dhi.io/redis:8-alpine3.23-fips

2. Verify a specific attestation

For example, to verify the SLSA provenance attestation:

docker scout attest get dhi.io/redis:8-alpine3.23-fips --predicate-type https://slsa.dev/provenance/v0.2 --verify

Attestations

All attestations are signed and can be verified with cosign.

PredicatePredicate typeReference
CycloneDX SBOM v1.6https://cyclonedx.org/bom/v1.6dhi.io/redis@sha256:4d54597f60d4e0020caa5c9c3208f7cbbd0e1af5c6de6861ed52fcd3079b96ee
Changelog v0.1https://docker.com/dhi/changelog/v0.1dhi.io/redis@sha256:6445bbe09a83016cf4c45f3329551819f84626589681827bb7468bf7e881781c
FIPS compliance v0.1https://docker.com/dhi/fips/v0.1dhi.io/redis@sha256:80bd725d6e6f062042bf65e0fef92463f5514b24861ae68f7cde27931b39b930
DHI Image Sources v0.1https://docker.com/dhi/source/v0.1dhi.io/redis@sha256:3f9fd439c23b7c264a96e505e0158f332bdbd84682688794d71b2978136006fa
STIG scan v0.1https://docker.com/dhi/stig/v0.1dhi.io/redis@sha256:64bb4248bc7ce41249a16bcfb394254cbae2974ca1b41eac1d34a1e14e293b36
CVEs v0.2https://in-toto.io/attestation/vulns/v0.2dhi.io/redis@sha256:35dc67506e22f2cc7ba028313675c97ce8d73ac62016b6d1b96e3e3b96bea123
Scout provenance v0.1https://scout.docker.com/provenance/v0.1dhi.io/redis@sha256:773ff9308798286f3b2e9c3cf023a64fb4e2ad9035b90b624424473df8df7977
Scout SBOM v0.1https://scout.docker.com/sbom/v0.1dhi.io/redis@sha256:c589d22cfe6073fb5855aacf9fcd72830fce36251616729254fa3405a6c76e18
Secrets scan v0.1https://scout.docker.com/secrets/v0.1dhi.io/redis@sha256:1bdbb9141489fa675f125b3cade948ab79be85bf7f215f6502176f47fb9ae3d5
Tests v0.1https://scout.docker.com/tests/v0.1dhi.io/redis@sha256:0454b127b13fb8a57768c12b3384576c78a0d616be555a66103257823601af26
Virus scan v0.1https://scout.docker.com/virus/v0.1dhi.io/redis@sha256:58ba38c868260d046418ce54d5e0c1ce74cb9e00bdcc59caae030cdfeaa34d9c
CVEs v0.1https://scout.docker.com/vulnerabilities/v0.1dhi.io/redis@sha256:bd213b6a9c61f7fb57d5852525e5cdab87e690f3a83338a6d9de82b2c3c813b8
SLSA provenance v0.2https://slsa.dev/provenance/v0.2dhi.io/redis@sha256:5bc7aa98772180e28e37f9c7d9b051f5cb9ac176fdd2fe9cacdfb0ce1395df82
SLSA provenance v1https://slsa.dev/provenance/v1dhi.io/redis@sha256:790094d0eb97a8ca51983e8bb474ba5833531dea3a11b8df38029877a449218e
SLSA verification summary v1https://slsa.dev/verification_summary/v1dhi.io/redis@sha256:83f6a49bd708e6da537602d36d35d64606c895731af4c6dad2d3d21ef077e277
SPDX SBOMhttps://spdx.dev/Documentdhi.io/redis@sha256:a1b0fafa86311e2691d5b0d716b7ad2c95e94fb6e3c37a5d82b67309aa900854