Rust

dhi.io/rust

Rust 1.x / Socket Firewall Enterprise (sfw-ent, dev)

CIS
linux/amd64
alpine 3.23
Tags:

1-alpine3.23-sfw-ent-dev, 1.96-alpine3.23-sfw-ent-dev, 1.96.1-alpine3.23-sfw-ent-dev

Index digest:

sha256:baffea74e88d17cd61ac30ebd85db21c2d6c7ae5490744b819578cab39a0b294

Manifest digest:

sha256:1642c032b2ced47c1dd4d42cb9b1b1e6da72907ce4e13252d662fca3d35c980c

Size

228.45 MB

Last pushed

5 days ago

Vulnerabilities

0
2
0
0
4

Support

Active

Overview

Docker Hardened Images include comprehensive security attestations that verify the image's build process, contents, and security posture. This image is built using SLSA Build Level 3 practices. Additionally, this image includes a source attestation that links to a corresponding source image containing all build materials. The following attestations are available and can be verified using cosign.

Docker's DHI public key is available at https://registry.scout.docker.com/keyring/dhi/latest.pub and also archived at https://github.com/docker-hardened-images/keyring.

How to verify attestations

1. List all available attestations

docker scout attest list dhi.io/rust:1-alpine3.23-sfw-ent-dev

2. Verify a specific attestation

For example, to verify the SLSA provenance attestation:

docker scout attest get dhi.io/rust:1-alpine3.23-sfw-ent-dev --predicate-type https://slsa.dev/provenance/v0.2 --verify

Attestations

All attestations are signed and can be verified with cosign.

PredicatePredicate typeReference
CycloneDX SBOM v1.6https://cyclonedx.org/bom/v1.6dhi.io/rust@sha256:230274b05007bc7c0af12022aeb294e0774a2e1c3ef9f4333078ccee4878cef6
Changelog v0.1https://docker.com/dhi/changelog/v0.1dhi.io/rust@sha256:8462cce321523a476604beabb64126b8bc71e8e1c4d4a55e178836717bb3efa7
DHI Image Sources v0.1https://docker.com/dhi/source/v0.1dhi.io/rust@sha256:8c62b1fd77f355e74e908f885aca6298abba69e5c412a937fb3d76fead7442c5
CVEs v0.2https://in-toto.io/attestation/vulns/v0.2dhi.io/rust@sha256:fbced96a3fac3a16083fbc242d5950f94499bbf0245c002f32ffc5e3bd926e9b
VEX v0.2.0https://openvex.dev/ns/v0.2.0dhi.io/rust@sha256:a07b1ca7dcdebb3e3fb057acb94b2239a8f9bada088a4463fa6f710728f58341
Scout provenance v0.1https://scout.docker.com/provenance/v0.1dhi.io/rust@sha256:5578265fdda7b5af8733b7449547bf11aab732c8720acf4be2a1e1e2bb739b92
Scout SBOM v0.1https://scout.docker.com/sbom/v0.1dhi.io/rust@sha256:37f693bdabbb28e4766368b78ddf3aa4106b72eec7a81a241eab6c02f739742d
Secrets scan v0.1https://scout.docker.com/secrets/v0.1dhi.io/rust@sha256:6b6cf3db71fee436e5e1acc2627e172feb5f8ff07c60e3c4a52e09f1e9fafeef
Tests v0.1https://scout.docker.com/tests/v0.1dhi.io/rust@sha256:2dd20d888a3561c64fe38c9a3ba31db9c2c0416a60fdd8d8f1c8c5407dce8705
Virus scan v0.1https://scout.docker.com/virus/v0.1dhi.io/rust@sha256:44e0fcbc420092f4703b9179165230be08126442c421b2df2da47c1504f1d63b
CVEs v0.1https://scout.docker.com/vulnerabilities/v0.1dhi.io/rust@sha256:64c99be9bf5d7546baa92571723222573190f5c940dd77cb3b8349e3607483cc
SLSA provenance v0.2https://slsa.dev/provenance/v0.2dhi.io/rust@sha256:49b05049513f810fb0f22ff43f7aa820cdbc350bbb834218608e2adc41aec2fd
SLSA provenance v1https://slsa.dev/provenance/v1dhi.io/rust@sha256:c41d9480b471f787f14cc258d4f1a8f7e6303b6b0c2a8a76e634daae5486ab7b
SLSA verification summary v1https://slsa.dev/verification_summary/v1dhi.io/rust@sha256:9deed0e642546f4246b5c6caca0005c22d22b7538fc5d923b08353ab0a5125cc
SPDX SBOMhttps://spdx.dev/Documentdhi.io/rust@sha256:3d1538d3a7d8808e6bd91ef1c22810097ad43ce1402b118aa6f417f002cf675e