Redis

dhi.io/redis

Redis 8.8.x (fips, dev)

CIS
FIPS
STIG
linux/amd64
alpine 3.24
Tags:

8-alpine-fips-dev, 8-alpine3.24-fips-dev, 8.8-alpine-fips-dev, 8.8-alpine3.24-fips-dev, 8.8.0-alpine-fips-dev, 8.8.0-alpine3.24-fips-dev

Index digest:

sha256:247526403246ae284f49e399a289bb003eaeb16ac05aa4b846be452632cc4406

Manifest digest:

sha256:6d98c0f92f9181f8a62924920c74b17af7e38384bf247c4eb7d0ef51be68b811

Size

27.10 MB

Last pushed

14 days ago

Vulnerabilities

0
0
1
0
0

Support

Active

Overview

Docker Hardened Images include comprehensive security attestations that verify the image's build process, contents, and security posture. This image is built using SLSA Build Level 3 practices. Additionally, this image includes a source attestation that links to a corresponding source image containing all build materials. The following attestations are available and can be verified using cosign.

Docker's DHI public key is available at https://registry.scout.docker.com/keyring/dhi/latest.pub and also archived at https://github.com/docker-hardened-images/keyring.

How to verify attestations

1. List all available attestations

docker scout attest list dhi.io/redis:8-alpine-fips-dev

2. Verify a specific attestation

For example, to verify the SLSA provenance attestation:

docker scout attest get dhi.io/redis:8-alpine-fips-dev --predicate-type https://slsa.dev/provenance/v0.2 --verify

Attestations

All attestations are signed and can be verified with cosign.

PredicatePredicate typeReference
CycloneDX SBOM v1.6https://cyclonedx.org/bom/v1.6dhi.io/redis@sha256:95ee2c3180081b852dd069e22c4181aa6c3b30771f69e1b28bc738e92dcf47e2
Changelog v0.1https://docker.com/dhi/changelog/v0.1dhi.io/redis@sha256:23201ff10db44eec022a4fcd427be257fce6e0dd204e154c5728c360e00dae05
FIPS compliance v0.1https://docker.com/dhi/fips/v0.1dhi.io/redis@sha256:cb41e277d531b9e06a6ffc04b0d5eca3f88ca71d4b63e88b0c457de34595882c
DHI Image Sources v0.1https://docker.com/dhi/source/v0.1dhi.io/redis@sha256:95369c99c70b268445dcc90ac47ac368c1140a8c170ce6c8a09bc8e1bb8d73db
STIG scan v0.1https://docker.com/dhi/stig/v0.1dhi.io/redis@sha256:8a2b121882c3eece65ba0f48487df6070dc5a9598eed163cb15a1f945f760c47
CVEs v0.2https://in-toto.io/attestation/vulns/v0.2dhi.io/redis@sha256:564f61ef950831fc02fa1ca2f288bdf58031168fd95f7b4dd58227e3ad4c8804
Scout provenance v0.1https://scout.docker.com/provenance/v0.1dhi.io/redis@sha256:40164972dd99d911236d6be6a9509acbe36c61c0aa0ad805cce5d611090efea6
Scout SBOM v0.1https://scout.docker.com/sbom/v0.1dhi.io/redis@sha256:3aafa058ab5d8b0bf1c4580fd6da18271267817faf92d9978607899f61c5ab87
Secrets scan v0.1https://scout.docker.com/secrets/v0.1dhi.io/redis@sha256:3361b259946f6450b856d13a727b6a5eb7455c4b6809879f46286aac372bd25c
Tests v0.1https://scout.docker.com/tests/v0.1dhi.io/redis@sha256:51458c006ff3adeda204dcdc4da60e32b538cb9cdebf6afe0c4c92968d9f091c
Virus scan v0.1https://scout.docker.com/virus/v0.1dhi.io/redis@sha256:f5969111a3fab30a432bea5d0938fdd5cba29ac9ad78956a853504ce1bae185f
CVEs v0.1https://scout.docker.com/vulnerabilities/v0.1dhi.io/redis@sha256:8eba06e66be4b17be73f098101618961b529c1cc73dc73438200c942c0431b29
SLSA provenance v0.2https://slsa.dev/provenance/v0.2dhi.io/redis@sha256:73213b4d4fd29396c7ae060a917aecef871fde4c9795ac5f52ea34fc42c8e91d
SLSA provenance v1https://slsa.dev/provenance/v1dhi.io/redis@sha256:3b4afc45451e72d2b4682f454f899d67fe3888393dbd61a355948fff8c8d9e48
SLSA verification summary v1https://slsa.dev/verification_summary/v1dhi.io/redis@sha256:cd66cd07c4291f69584a19174b88597610dfe64d972051e82868b915cb5de531
SPDX SBOMhttps://spdx.dev/Documentdhi.io/redis@sha256:8b3f7d34098d583747e7b2d9c4dfd5975d45a66055ba1cab93ca2b89f2245a17