dhi.io/rust
1-alpine3.23-sfw-ent-dev, 1.96-alpine3.23-sfw-ent-dev, 1.96.1-alpine3.23-sfw-ent-dev
sha256:baffea74e88d17cd61ac30ebd85db21c2d6c7ae5490744b819578cab39a0b294
Manifest digest:sha256:1642c032b2ced47c1dd4d42cb9b1b1e6da72907ce4e13252d662fca3d35c980c
Size
228.45 MB
Last pushed
5 days ago
Vulnerabilities
Support
Active
Docker Hardened Images include comprehensive security attestations that verify the image's build process, contents, and security posture. This image is built using SLSA Build Level 3 practices. Additionally, this image includes a source attestation that links to a corresponding source image containing all build materials. The following attestations are available and can be verified using cosign.
Docker's DHI public key is available at https://registry.scout.docker.com/keyring/dhi/latest.pub and also archived at https://github.com/docker-hardened-images/keyring.
1. List all available attestations
docker scout attest list dhi.io/rust:1-alpine3.23-sfw-ent-dev2. Verify a specific attestation
For example, to verify the SLSA provenance attestation:
docker scout attest get dhi.io/rust:1-alpine3.23-sfw-ent-dev --predicate-type https://slsa.dev/provenance/v0.2 --verifyAll attestations are signed and can be verified with cosign.
| Predicate | Predicate type | Reference |
|---|---|---|
| CycloneDX SBOM v1.6 | https://cyclonedx.org/bom/v1.6 | dhi.io/rust@sha256:230274b05007bc7c0af12022aeb294e0774a2e1c3ef9f4333078ccee4878cef6 |
| Changelog v0.1 | https://docker.com/dhi/changelog/v0.1 | dhi.io/rust@sha256:8462cce321523a476604beabb64126b8bc71e8e1c4d4a55e178836717bb3efa7 |
| DHI Image Sources v0.1 | https://docker.com/dhi/source/v0.1 | dhi.io/rust@sha256:8c62b1fd77f355e74e908f885aca6298abba69e5c412a937fb3d76fead7442c5 |
| CVEs v0.2 | https://in-toto.io/attestation/vulns/v0.2 | dhi.io/rust@sha256:fbced96a3fac3a16083fbc242d5950f94499bbf0245c002f32ffc5e3bd926e9b |
| VEX v0.2.0 | https://openvex.dev/ns/v0.2.0 | dhi.io/rust@sha256:a07b1ca7dcdebb3e3fb057acb94b2239a8f9bada088a4463fa6f710728f58341 |
| Scout provenance v0.1 | https://scout.docker.com/provenance/v0.1 | dhi.io/rust@sha256:5578265fdda7b5af8733b7449547bf11aab732c8720acf4be2a1e1e2bb739b92 |
| Scout SBOM v0.1 | https://scout.docker.com/sbom/v0.1 | dhi.io/rust@sha256:37f693bdabbb28e4766368b78ddf3aa4106b72eec7a81a241eab6c02f739742d |
| Secrets scan v0.1 | https://scout.docker.com/secrets/v0.1 | dhi.io/rust@sha256:6b6cf3db71fee436e5e1acc2627e172feb5f8ff07c60e3c4a52e09f1e9fafeef |
| Tests v0.1 | https://scout.docker.com/tests/v0.1 | dhi.io/rust@sha256:2dd20d888a3561c64fe38c9a3ba31db9c2c0416a60fdd8d8f1c8c5407dce8705 |
| Virus scan v0.1 | https://scout.docker.com/virus/v0.1 | dhi.io/rust@sha256:44e0fcbc420092f4703b9179165230be08126442c421b2df2da47c1504f1d63b |
| CVEs v0.1 | https://scout.docker.com/vulnerabilities/v0.1 | dhi.io/rust@sha256:64c99be9bf5d7546baa92571723222573190f5c940dd77cb3b8349e3607483cc |
| SLSA provenance v0.2 | https://slsa.dev/provenance/v0.2 | dhi.io/rust@sha256:49b05049513f810fb0f22ff43f7aa820cdbc350bbb834218608e2adc41aec2fd |
| SLSA provenance v1 | https://slsa.dev/provenance/v1 | dhi.io/rust@sha256:c41d9480b471f787f14cc258d4f1a8f7e6303b6b0c2a8a76e634daae5486ab7b |
| SLSA verification summary v1 | https://slsa.dev/verification_summary/v1 | dhi.io/rust@sha256:9deed0e642546f4246b5c6caca0005c22d22b7538fc5d923b08353ab0a5125cc |
| SPDX SBOM | https://spdx.dev/Document | dhi.io/rust@sha256:3d1538d3a7d8808e6bd91ef1c22810097ad43ce1402b118aa6f417f002cf675e |