Attestations
dhi.io/redis
8-compat, 8-debian-compat, 8-debian13-compat, 8.8-compat, 8.8-debian-compat, 8.8-debian13-compat, 8.8.0-compat, 8.8.0-debian-compat, 8.8.0-debian13-compat
sha256:aff9691ba7f2ba1100d06a3063abb3328f9bd120d0946d4442b4c8d19d040ef6
Manifest digest:sha256:60f30aa31f9e404d958f48c635e9b063b56c6db16fa27893aa60ce0c3baa247a
Size
33.69 MB
Last pushed
3 days ago
Vulnerabilities
Support
Active
Docker Hardened Images include comprehensive security attestations that verify the image's build process, contents, and security posture. This image is built using SLSA Build Level 3 practices. Additionally, this image includes a source attestation that links to a corresponding source image containing all build materials. The following attestations are available and can be verified using cosign.
Docker's DHI public key is available at https://registry.scout.docker.com/keyring/dhi/latest.pub and also archived at https://github.com/docker-hardened-images/keyring.
1. List all available attestations
docker scout attest list dhi.io/redis:8-compat2. Verify a specific attestation
For example, to verify the SLSA provenance attestation:
docker scout attest get dhi.io/redis:8-compat --predicate-type https://slsa.dev/provenance/v0.2 --verifyAll attestations are signed and can be verified with cosign.
| Predicate | Predicate type | Reference |
|---|---|---|
| CycloneDX SBOM v1.6 | https://cyclonedx.org/bom/v1.6 | dhi.io/redis@sha256:4ef6b492791a6037e12876f14655e20bca5da19111f4717b1b679ae3564c6337 |
| Changelog v0.1 | https://docker.com/dhi/changelog/v0.1 | dhi.io/redis@sha256:cfaf950ae624881ef3c9c8bf31ce71472834fddf04bce7a9d67ef8d1512a6e6a |
| DHI Image Sources v0.1 | https://docker.com/dhi/source/v0.1 | dhi.io/redis@sha256:aeac2f04dbce1588332cf54ac4996e51f1dc87458010fa8f4cfcd1910a3c9810 |
| CVEs v0.2 | https://in-toto.io/attestation/vulns/v0.2 | dhi.io/redis@sha256:16e1634939e10b377aba96b3155e5f3b2547fdb5b01db867ed73f0088d0ddf2b |
| VEX v0.2.0 | https://openvex.dev/ns/v0.2.0 | dhi.io/redis@sha256:9a83676d9a2e0f3688b1c4acc31db6c907b68dd8dfd9cd192adaba2d7d2a5f12 |
| Scout provenance v0.1 | https://scout.docker.com/provenance/v0.1 | dhi.io/redis@sha256:7a9aca4cf32b214fdc9229c875470ed77399334f22398b1269cbd1901df45ae9 |
| Scout SBOM v0.1 | https://scout.docker.com/sbom/v0.1 | dhi.io/redis@sha256:88de337363aa65fe920fe087ed90b966baaf3d3bf3fdb1d87604ed6a2722f839 |
| Secrets scan v0.1 | https://scout.docker.com/secrets/v0.1 | dhi.io/redis@sha256:7f392125d7a8064384c36396ce504c9f0a2433235832b26ae5077324009848fe |
| Tests v0.1 | https://scout.docker.com/tests/v0.1 | dhi.io/redis@sha256:d04701a817336486e1a1ba5754778df9ee489e9917252e169bf90f55401cf52b |
| Virus scan v0.1 | https://scout.docker.com/virus/v0.1 | dhi.io/redis@sha256:eb213c3dc2ef2831fe6b424fe75dd21380e864a4ebcb73f79eed8576325476f2 |
| CVEs v0.1 | https://scout.docker.com/vulnerabilities/v0.1 | dhi.io/redis@sha256:705409c06505b8143c825bbd2d1e62764e9ae97ba7b3ea49af18ea0ad700730a |
| SLSA provenance v0.2 | https://slsa.dev/provenance/v0.2 | dhi.io/redis@sha256:5dc76a85274b7cf2e1be05cb70d1004c3c74ed339b5db468637655005b65cfdc |
| SLSA provenance v1 | https://slsa.dev/provenance/v1 | dhi.io/redis@sha256:58e2f2fb79715825895e6ca81fbc2848e5de81a8855ab2201c92e35731e5607f |
| SLSA verification summary v1 | https://slsa.dev/verification_summary/v1 | dhi.io/redis@sha256:dfb5fa3238a2bc91c01acfc2fe15f9b67a6d6b2e7b817dc26dad9a77ae874959 |
| SPDX SBOM | https://spdx.dev/Document | dhi.io/redis@sha256:147b6ac17d126e321b946da37287fdaaecf5c8dce87cedd4f6e2d6d7edfeff10 |