Attestations
dhi.io/redis
8, 8-debian, 8-debian13, 8.8, 8.8-debian, 8.8-debian13, 8.8.0, 8.8.0-debian, 8.8.0-debian13
sha256:f1dda8014cea13246dd69a360c0508813230dbe1b9a1590f014533e45119e883
Manifest digest:sha256:285d87ad93a3c1fbdd79e4d42fcaae4d23ebf571b81b3835b54542e61e993ec0
Size
28.73 MB
Last pushed
4 days ago
Vulnerabilities
Support
Active
Docker Hardened Images include comprehensive security attestations that verify the image's build process, contents, and security posture. This image is built using SLSA Build Level 3 practices. Additionally, this image includes a source attestation that links to a corresponding source image containing all build materials. The following attestations are available and can be verified using cosign.
Docker's DHI public key is available at https://registry.scout.docker.com/keyring/dhi/latest.pub and also archived at https://github.com/docker-hardened-images/keyring.
1. List all available attestations
docker scout attest list dhi.io/redis:82. Verify a specific attestation
For example, to verify the SLSA provenance attestation:
docker scout attest get dhi.io/redis:8 --predicate-type https://slsa.dev/provenance/v0.2 --verifyAll attestations are signed and can be verified with cosign.
| Predicate | Predicate type | Reference |
|---|---|---|
| CycloneDX SBOM v1.6 | https://cyclonedx.org/bom/v1.6 | dhi.io/redis@sha256:6a2d9161a3becfc33ad80277a2b786a6e7fa998329d7c5fd969e71fd419a8127 |
| Changelog v0.1 | https://docker.com/dhi/changelog/v0.1 | dhi.io/redis@sha256:c5ac743933a4939aa82ff76966f6451d6f93b11971b600e5ed3f8eda3def8818 |
| DHI Image Sources v0.1 | https://docker.com/dhi/source/v0.1 | dhi.io/redis@sha256:032f0de2c627164141dc674adf2082e7a2045a6325656ba7f66b8311b38dd0d4 |
| CVEs v0.2 | https://in-toto.io/attestation/vulns/v0.2 | dhi.io/redis@sha256:9e9f081499f563df30b162a20f3f9299c026925babcb34f4920acd4c3fe923ad |
| VEX v0.2.0 | https://openvex.dev/ns/v0.2.0 | dhi.io/redis@sha256:e73ca1763b7bc7afe8bd215e77d7aa2c57180f72cce9208ddb64592c6309f220 |
| Scout provenance v0.1 | https://scout.docker.com/provenance/v0.1 | dhi.io/redis@sha256:031c4122e40724a9973aa36efa3edd61e25f58775424f24caeca270efca2e8e8 |
| Scout SBOM v0.1 | https://scout.docker.com/sbom/v0.1 | dhi.io/redis@sha256:dfad12f4fd77a18b6478997ff28fb144ead4dc39242dcbff1e8ed11f76a4da39 |
| Secrets scan v0.1 | https://scout.docker.com/secrets/v0.1 | dhi.io/redis@sha256:bbce46b59b16bbbe5f659d6512ac1cbc43923e785acf6b3a3791a7ac362f8c84 |
| Tests v0.1 | https://scout.docker.com/tests/v0.1 | dhi.io/redis@sha256:29ac2af9eb763771d728b78b5ad30936c5de166cc4ac1b514c6ffc7a73e7326a |
| Virus scan v0.1 | https://scout.docker.com/virus/v0.1 | dhi.io/redis@sha256:3a6e25e86e7198127b21c4157f39be42e8d71b8451ef6fa40e65abc5c754b0a7 |
| CVEs v0.1 | https://scout.docker.com/vulnerabilities/v0.1 | dhi.io/redis@sha256:73195712b458b1b309eb9994e0acde04c3a2858d465f835f2fb8d22a6b8e901a |
| SLSA provenance v0.2 | https://slsa.dev/provenance/v0.2 | dhi.io/redis@sha256:9b0ac8d462093f91b86c19836706b892f231bde1559c959d925e88acd4b7e6d5 |
| SLSA provenance v1 | https://slsa.dev/provenance/v1 | dhi.io/redis@sha256:6d2bd682cf0abc34e7c76aba71fc12aed9569bcebea53252af23a82d66be42cc |
| SLSA verification summary v1 | https://slsa.dev/verification_summary/v1 | dhi.io/redis@sha256:caf3c9dd318ddd08f52042fcb4c139c8c2f4a8288e6beb822ddfa0e9e2281eb1 |
| SPDX SBOM | https://spdx.dev/Document | dhi.io/redis@sha256:7f0030205fa554ce9543b8dc66c8aa765270b91cd3ab1f687d5f4b79b5026de9 |