dhi.io/calico-node
Calico Node 3.30.x
3.30, 3.30-debian13, 3.30.6, 3.30.6-debian13, v3.30.6
sha256:9a520df1dfe42cd5f9b765c7d4de892131889639f82e0512195d2db2d365123a
Manifest digest:sha256:9a271917913d9efbc818832b55f1768cf340fd52ca6bf48ce4127da293532b38
Size
55.13 MB
Last pushed
7 days ago
Vulnerabilities
Health
Overview
Docker Hardened Images include comprehensive security attestations that verify the image's build process, contents, and security posture. This image is built using SLSA Build Level 3 practices. Additionally, this image includes a source attestation that links to a corresponding source image containing all build materials. The following attestations are available and can be verified using cosign.
Docker's DHI public key is available at https://registry.scout.docker.com/keyring/dhi/latest.pub and also archived at https://github.com/docker-hardened-images/keyring.
How to verify attestations
1. List all available attestations
docker scout attest list dhi.io/calico-node:3.302. Verify a specific attestation
For example, to verify the SLSA provenance attestation:
docker scout attest get dhi.io/calico-node:3.30 --predicate-type https://slsa.dev/provenance/v0.2 --verifyAttestations
All attestations are signed and can be verified with cosign.
| Predicate | Predicate type | Reference |
|---|---|---|
| CycloneDX SBOM v1.6 | https://cyclonedx.org/bom/v1.6 | dhi.io/calico-node@sha256:b60a0935af1dee8560abc58ab5996f5dbabe09969bbc9de9244cc775890d9d1b |
| Changelog v0.1 | https://docker.com/dhi/changelog/v0.1 | dhi.io/calico-node@sha256:3a503167a21d57c8b53527034e523e60cb935f9b11e37a27212c7e145efca60b |
| DHI Image Sources v0.1 | https://docker.com/dhi/source/v0.1 | dhi.io/calico-node@sha256:bcde5ade488c0dcb8426965a3be89052f8180d109c23b52404204bd23ebf137d |
| CVEs v0.2 | https://in-toto.io/attestation/vulns/v0.2 | dhi.io/calico-node@sha256:0b971c195559f0ea2374520b259610c4aec0b18a27ff65a00951d5e620a36ac5 |
| VEX v0.2.0 | https://openvex.dev/ns/v0.2.0 | dhi.io/calico-node@sha256:eeac495596dda0b6834b84813ec94f75ac61bb731d8eb57469407c6b1834de6d |
| Scout health score v0.1 | https://scout.docker.com/health/v0.1 | dhi.io/calico-node@sha256:5942d8d7737188584d64cf97e3d50dca44bdbff01e727afd3f67f1601dcde248 |
| Scout provenance v0.1 | https://scout.docker.com/provenance/v0.1 | dhi.io/calico-node@sha256:6bd38ddea4ee064814bcdbe014f58763d096904a9fc4793e28bb32277d64d4c2 |
| Scout SBOM v0.1 | https://scout.docker.com/sbom/v0.1 | dhi.io/calico-node@sha256:a67106ca89905fbf1020d6020c2025f36432bb840b39b27f329ff856ac5c9c9a |
| Secrets scan v0.1 | https://scout.docker.com/secrets/v0.1 | dhi.io/calico-node@sha256:22de5707528b7c8de994c4ebad9bf6ac9f58bd56686dfd544d5eaed6d9ec539d |
| Tests v0.1 | https://scout.docker.com/tests/v0.1 | dhi.io/calico-node@sha256:6ca175499549f117ee94bb5c28fdf17ff97b7091eb7a285af79f2236d2b38292 |
| Virus scan v0.1 | https://scout.docker.com/virus/v0.1 | dhi.io/calico-node@sha256:cce8a57dad96b1b27c0bf25503a9ba7be8c59a225b8c8bb28d2c9063569be236 |
| CVEs v0.1 | https://scout.docker.com/vulnerabilities/v0.1 | dhi.io/calico-node@sha256:8f5cc4a275334f112669e12b5697b524b24e23a9219877b7ae110044c303f160 |
| SLSA provenance v0.2 | https://slsa.dev/provenance/v0.2 | dhi.io/calico-node@sha256:33cb698e46a28617cfa84fa4239723cd0c8ce407a178addd8014a377cec269fb |
| SLSA provenance v1 | https://slsa.dev/provenance/v1 | dhi.io/calico-node@sha256:fb940e286a31e6f848f17272a5528fa7b1d83dbd2e280e23e8ddae658a457bd6 |
| SLSA verification summary v1 | https://slsa.dev/verification_summary/v1 | dhi.io/calico-node@sha256:eb97758158f738b582286d1a0aabda6d1d7480de812309d73926ebcbfe1bd804 |
| SPDX SBOM | https://spdx.dev/Document | dhi.io/calico-node@sha256:8af278ff6a3d358730887ceeb897f1bec407327dc1463c722d87837208df9fc7 |