Near Zero CVE base image.
9.9K
This is a hardened, multi-architecture Java runtime built on Wolfi, the community-driven Linux undistro designed for security. Curated by NetShield, it provides a minimal attack surface for enterprise SecOps.
apko on Wolfi to minimize CVEs.linux/amd64 and linux/arm64 (Apple Silicon compatible).To verify the integrity and origin of this image, ensure you have Cosign installed and run the following command. This check confirms the image was built by our official GitHub automation.
cosign verify \
--certificate-identity-regexp "https://github.com/Ekene95/secops-base-images/.*" \
--certificate-oidc-issuer "https://token.actions.githubusercontent.com" \
kenzman/mpnt-wolfi-java:24.0.2
Pull the latest hardened version:
docker pull kenzman/mpnt-wolfi-java:latest
Use as a base in your Dockerfile:
FROM kenzman/mpnt-wolfi-java:24
COPY my-app.jar /app.jar
CMD ["java", "-jar", "/app.jar"]
Content type
Image
Digest
sha256:6e65e7089…
Size
70 MB
Last updated
22 days ago
docker pull kenzman/mpnt-wolfi-java:17.0.19-internal