dhi.io/rust
1-alpine3.23-sfw-dev, 1.96-alpine3.23-sfw-dev, 1.96.1-alpine3.23-sfw-dev
sha256:a1c7d6a61decb5c7e3468385e26a0396807502ab53c1c28f0e667d8f4feb4fbd
Manifest digest:sha256:b832ca5b775653c593e12e24afa352e495daf6ee86e13d3c51a57c9ce0760346
Size
227.83 MB
Last pushed
5 days ago
Vulnerabilities
Support
Active
Docker Hardened Images include comprehensive security attestations that verify the image's build process, contents, and security posture. This image is built using SLSA Build Level 3 practices. Additionally, this image includes a source attestation that links to a corresponding source image containing all build materials. The following attestations are available and can be verified using cosign.
Docker's DHI public key is available at https://registry.scout.docker.com/keyring/dhi/latest.pub and also archived at https://github.com/docker-hardened-images/keyring.
1. List all available attestations
docker scout attest list dhi.io/rust:1-alpine3.23-sfw-dev2. Verify a specific attestation
For example, to verify the SLSA provenance attestation:
docker scout attest get dhi.io/rust:1-alpine3.23-sfw-dev --predicate-type https://slsa.dev/provenance/v0.2 --verifyAll attestations are signed and can be verified with cosign.
| Predicate | Predicate type | Reference |
|---|---|---|
| CycloneDX SBOM v1.6 | https://cyclonedx.org/bom/v1.6 | dhi.io/rust@sha256:c51903126c09ec8115851f63e052fb4d2916007c7092dccba06ce8a74ec588ad |
| Changelog v0.1 | https://docker.com/dhi/changelog/v0.1 | dhi.io/rust@sha256:4a93c78521129a605bad8d47620e6451c6a303d00da609869f5a73cb3f86a6a6 |
| DHI Image Sources v0.1 | https://docker.com/dhi/source/v0.1 | dhi.io/rust@sha256:a73f853538bd7f54aa03a64fc6edef4c53decec0bf14685554229cc74a5902e8 |
| CVEs v0.2 | https://in-toto.io/attestation/vulns/v0.2 | dhi.io/rust@sha256:10b2d01f0af2b5d8ea7aa1afc75b863cf652ac277c7caf4e3c8002eb40a6ff6e |
| VEX v0.2.0 | https://openvex.dev/ns/v0.2.0 | dhi.io/rust@sha256:b4f20d16cbc9b9d2c8a6d04df001267d41e0ee322674d6429adf5044c0bb76e2 |
| Scout provenance v0.1 | https://scout.docker.com/provenance/v0.1 | dhi.io/rust@sha256:4a88920f13e318b5e841a6e4e53a7445035f45af01bf2dccb974892930b9c256 |
| Scout SBOM v0.1 | https://scout.docker.com/sbom/v0.1 | dhi.io/rust@sha256:9d81a22e43cb3a63768c79af0b3f0874ee47f998a4228c0c965ead07ca21f27e |
| Secrets scan v0.1 | https://scout.docker.com/secrets/v0.1 | dhi.io/rust@sha256:c7106842c21bc9d5f1438f4bdedd827e305dea70186d1b927b20bb365f928bb4 |
| Tests v0.1 | https://scout.docker.com/tests/v0.1 | dhi.io/rust@sha256:8fb1dc540f2a05e02e463c9c1fd299ce7520ff3a9cf9eb70dfddfc62d0453374 |
| Virus scan v0.1 | https://scout.docker.com/virus/v0.1 | dhi.io/rust@sha256:eeb834467eefe9c4b7b891ae2954c23e5fc360c6b86f26bc2c2cb5e1506dde9d |
| CVEs v0.1 | https://scout.docker.com/vulnerabilities/v0.1 | dhi.io/rust@sha256:65ac11a98c83a99bad1577fdf8a416cec7e6342af238e2043dfb368e3547c4fb |
| SLSA provenance v0.2 | https://slsa.dev/provenance/v0.2 | dhi.io/rust@sha256:51556dabdcdc6e644c7e1990c6aec034e6decfa3149edcda4c52a6a7c6141507 |
| SLSA provenance v1 | https://slsa.dev/provenance/v1 | dhi.io/rust@sha256:cdf80ee68f92a4ceb50b05fa1dcaf28204aa4951ad3b80fe2e61faca43c2d6e8 |
| SLSA verification summary v1 | https://slsa.dev/verification_summary/v1 | dhi.io/rust@sha256:952e2fa158148b2e10d5fbca7c942f3020e3b374b21f7a7ebad7ff17c01d0337 |
| SPDX SBOM | https://spdx.dev/Document | dhi.io/rust@sha256:75daca01b725a0bc00ccc6db7d0498d5d91c564ba49ddf4afe55c52d48039eec |