Docker Hardened Images (DHI) are built to meet the highest security and compliance standards. They provide a trusted foundation for containerized workloads by incorporating security best practices from the start.
DHI images are available under Apache License 2.0.
Important
Read the announcement blog post: A Safer Container Ecosystem with Docker: Free Docker Hardened Images.
Docker Hardened Images provides a curated collection of container images built with security and minimalism as core principles. Each image is:
- Security-focused: Published with zero-known CVEs and hardened configurations
- Transparent: Complete Software Bill of Materials (SBOM) and VEX metadata
- Verified: Signed provenance for supply chain security
- Production-ready: Configured with best practices for enterprise deployments
- Continuously updated: Regularly maintained with the latest security patches
- Catalog: Image, Helm chart, and package definitions
- Discussions: Community forum and product discussions
- Advisories: Security advisories and vulnerability information
- Changelog: Release notes and update history
- Keyring: Signing keys and verification tools
Pre-built images are available:
docker login dhi.io
docker pull dhi.io/node:24-debian13
docker pull dhi.io/python:3.12-alpine3.22
docker pull dhi.io/postgres:17-debian13The entire catalog of images and charts is available at dhi.io.
- Docker Hardened Images: docker.com/products/hardened-images
- Product Catalog: dhi.io
- Blog: Introducing Docker Hardened Images
- Commercial Support: docker.com/support
Docker Hardened Images - Building secure containers, together.
