Today, Docker announced free and open source hardened images for everyone. Included amongst that catalog is a hardened uv image.
Docker Hardened Images are built to meet the highest security and compliance standards. They provide a trusted foundation for containerized workloads by incorporating security best practices from the start.
These images are published with near-zero known CVEs, include signed provenance, and come with a complete Software Bill of Materials (SBOM) and VEX metadata. They're designed to secure your software supply chain while fitting seamlessly into existing Docker workflows.
Given the strengths of this security model, I expect hardened images will become the recommended best practice going forward. If so, could this repository be updated to reflect that direction?
Today, Docker announced free and open source hardened images for everyone. Included amongst that catalog is a hardened uv image.
Given the strengths of this security model, I expect hardened images will become the recommended best practice going forward. If so, could this repository be updated to reflect that direction?