Redis

dhi.io/redis

Redis 8.8.x (fips)

CIS
FIPS
STIG
linux/amd64
debian 13
Tags:

8-debian-fips, 8-debian13-fips, 8-fips, 8.8-debian-fips, 8.8-debian13-fips, 8.8-fips, 8.8.0-debian-fips, 8.8.0-debian13-fips, 8.8.0-fips

Index digest:

sha256:2efcc85f482b494f61c999b5531b530d5943a13e57bacab544c4b3c37807ad38

Manifest digest:

sha256:1fcb27f161f62da5dca4cbd63cb855006bd1f643996d88e2dbe5af98f51b912a

Size

29.48 MB

Last pushed

3 days ago

Vulnerabilities

0
0
0
0
0

Support

Active

Overview

Docker Hardened Images include comprehensive security attestations that verify the image's build process, contents, and security posture. This image is built using SLSA Build Level 3 practices. Additionally, this image includes a source attestation that links to a corresponding source image containing all build materials. The following attestations are available and can be verified using cosign.

Docker's DHI public key is available at https://registry.scout.docker.com/keyring/dhi/latest.pub and also archived at https://github.com/docker-hardened-images/keyring.

How to verify attestations

1. List all available attestations

docker scout attest list dhi.io/redis:8-debian-fips

2. Verify a specific attestation

For example, to verify the SLSA provenance attestation:

docker scout attest get dhi.io/redis:8-debian-fips --predicate-type https://slsa.dev/provenance/v0.2 --verify

Attestations

All attestations are signed and can be verified with cosign.

PredicatePredicate typeReference
CycloneDX SBOM v1.6https://cyclonedx.org/bom/v1.6dhi.io/redis@sha256:e9a12bd0ea1c572af67846df914b68a725dd9f971a1b50e382718f65904b677a
Changelog v0.1https://docker.com/dhi/changelog/v0.1dhi.io/redis@sha256:94bc0473e535e679a2da44e45cbe6778497317baacc01ee84e167dede80d4b21
FIPS compliance v0.1https://docker.com/dhi/fips/v0.1dhi.io/redis@sha256:eb4e4fa981b6fc6eb759c9ab1ab251c22be5eab86bc0e25a39d4836a8a5d0cf5
DHI Image Sources v0.1https://docker.com/dhi/source/v0.1dhi.io/redis@sha256:9b43720e68555f9dc1d3a57b1b331b9de0d40e205ec0daff803f4b27891b3179
STIG scan v0.1https://docker.com/dhi/stig/v0.1dhi.io/redis@sha256:347ca52d2a0faaf8a712aa2245c6fc6451842a28ba051d5d11cc363eef59c1c4
CVEs v0.2https://in-toto.io/attestation/vulns/v0.2dhi.io/redis@sha256:14a23d3ba2437d17921d7a214bd0b407c8988a5b7826c2be34dd92f36604d669
VEX v0.2.0https://openvex.dev/ns/v0.2.0dhi.io/redis@sha256:31147bc6629af9aec564d8cc9fb1949ec6193f32296604233c0a441e618161b5
Scout provenance v0.1https://scout.docker.com/provenance/v0.1dhi.io/redis@sha256:7ef657ad181b8104ec8d19981011dfa8ce5d401dbe8502800d9eef89448b1545
Scout SBOM v0.1https://scout.docker.com/sbom/v0.1dhi.io/redis@sha256:58514f64e7294301657d562b07b4a94d0995a6d25999c45eb6c2e351df60057a
Secrets scan v0.1https://scout.docker.com/secrets/v0.1dhi.io/redis@sha256:8e9af34e428342a5df9fec7ad7dc2ad867665d6f83be4d825a9810e43cab4341
Tests v0.1https://scout.docker.com/tests/v0.1dhi.io/redis@sha256:7ccf7a7fccdf661d198e2bfa5a3047b1aeca4704ed19ec9bed901076ef01a23c
Virus scan v0.1https://scout.docker.com/virus/v0.1dhi.io/redis@sha256:72b02c497b2766fc0c6d9f111332adc60a37da513178a4d7d4024f6305677491
CVEs v0.1https://scout.docker.com/vulnerabilities/v0.1dhi.io/redis@sha256:7e435da29129ead7e9c543efc23438603bb27e5c0f80c2f93e58ba0464f4e1c2
SLSA provenance v0.2https://slsa.dev/provenance/v0.2dhi.io/redis@sha256:5d32e9bd3cd93b8ba25dc54dc1a69a986767d08b53fdd8c03d6c75e289142de4
SLSA provenance v1https://slsa.dev/provenance/v1dhi.io/redis@sha256:838e6ce622fb91443be85d02154b51d24647fa82655b68612ba1063d79706cd9
SLSA verification summary v1https://slsa.dev/verification_summary/v1dhi.io/redis@sha256:87cdd9c608f834ff2e9121aa695f9a924591561ad0a343c6f50f1793ba8f9669
SPDX SBOMhttps://spdx.dev/Documentdhi.io/redis@sha256:48b54ebb4d8456b69420fa678436184e50c9899606021ed1d8e05025cc43a629