diff --git a/content/manuals/docker-hub/image-library/_index.md b/content/manuals/docker-hub/image-library/_index.md index 3d41410ff1f3..ff2847b0e7bb 100644 --- a/content/manuals/docker-hub/image-library/_index.md +++ b/content/manuals/docker-hub/image-library/_index.md @@ -14,9 +14,9 @@ workflows, making it easier to share and collaborate. In this section, learn about: - [Search](./search.md): Discover how to browse and search Docker Hub's extensive resources. -- [Trusted content](./trusted-content.md): Dive into Docker Official Images, - Verified Publisher content, and Sponsored Open Source images, all vetted for - security and reliability to streamline your workflows. -- [Catalogs](./catalogs.md): Explore specialized collections like the generative AI catalog. +- [Trusted content](./trusted-content.md): Dive into Docker Hardened Images, + Docker Official Images, Verified Publisher content, and Sponsored Open Source + images, all vetted for security and reliability to streamline your workflows. +- [Catalogs](./catalogs.md): Explore specialized collections like the generative AI catalogs. - [Mirroring](./mirror.md): Learn how to create a mirror of Docker Hub's container image library as a pull-through cache. \ No newline at end of file diff --git a/content/manuals/docker-hub/image-library/search.md b/content/manuals/docker-hub/image-library/search.md index a78f57a39c68..36898e9273d3 100644 --- a/content/manuals/docker-hub/image-library/search.md +++ b/content/manuals/docker-hub/image-library/search.md @@ -14,15 +14,21 @@ types of content. ## Filters The search functionality includes filters to narrow down -results based on your requirements, such as products, categories, and trusted -content. This ensures that you can quickly find and access the resources best +results based on your requirements, such as products, categories, trusted +content, and publishers. This ensures that you can quickly find and access the resources best suited to your project. ### Products -Docker Hub's content library features three products, each designed to meet -specific needs of developers and organizations. These products include images, -plugins, and extensions. +Docker Hub's content library features various products, each designed to meet +specific needs of developers and organizations. These products include: + +- Images +- Extensions +- Helm charts +- Compose +- AI models +- Plugins #### Images @@ -42,26 +48,6 @@ reusable building blocks, reducing the need to start from scratch. Whether you're a beginner building your first container or an enterprise managing complex architectures, Docker Hub images provide a reliable foundation. -#### Plugins - -Plugins in Docker Hub let you extend and customize Docker Engine to suit -specialized requirements. Plugins integrate directly with the Docker Engine and -provide capabilities such as: - -- Network plugins: Enhance networking functionality, enabling integration with - complex network infrastructures. -- Volume plugins: Provide advanced storage options, supporting persistent and - distributed storage across various backends. -- Authorization plugins: Offer fine-grained access control to secure Docker - environments. - -By leveraging Docker plugins, teams can tailor Docker Engine to meet their -specific operational needs, ensuring compatibility with existing infrastructures -and workflows. - -To learn more about plugins, see [Docker Engine managed plugin -system](/manuals/engine/extend/_index.md). - #### Extensions Docker Hub offers extensions for Docker Desktop, which enhance its core @@ -85,6 +71,88 @@ Desktop's interface. To learn more about extensions, see [Docker Extensions](/manuals/extensions/_index.md). +#### Helm charts + +Helm charts in Docker Hub provide a streamlined way to package, configure, and +deploy Kubernetes applications. Helm is the package manager for Kubernetes, and +charts are pre-configured templates that define the resources needed to run an +application in a Kubernetes cluster. Docker Hub hosts a variety of Helm charts +that provide: + +- Application packaging: Bundle Kubernetes manifests, configurations, and + dependencies into a single, reusable chart. +- Version management: Track and manage different versions of your application + deployments. +- Configuration templating: Customize deployments with values files, making it + easy to deploy the same application across different environments. +- Dependency management: Automatically handle chart dependencies, ensuring all + required components are deployed together. + +Helm charts reduce the complexity of Kubernetes deployments, making it easier +for teams to deploy, upgrade, and manage applications in production +environments. + +#### Compose + +Docker Compose files in Docker Hub enable multi-container application +orchestration through simple YAML configuration files. Compose is a tool for +defining and running multi-container Docker applications, and Docker Hub hosts +Compose files that help you: + +- Multi-container orchestration: Define and run applications consisting of + multiple interconnected containers with a single command. +- Service configuration: Specify container images, environment variables, + networks, volumes, and dependencies in a declarative format. +- Development and testing: Quickly spin up complete application stacks for local + development, testing, or demonstration purposes. +- Environment consistency: Ensure consistent application behavior across + development, staging, and production environments. + +Compose files simplify the process of managing complex applications by +providing a clear, version-controlled definition of your entire application +stack. + +#### AI models + +Docker Hub hosts AI and machine learning models in containerized formats, +making it easier to deploy, share, and run AI applications across different +environments. These containerized AI models provide: + +- Pre-trained models: Access ready-to-use machine learning models for common + tasks such as image recognition, natural language processing, and predictive + analytics. +- Model serving: Deploy models as containerized services that can be easily + integrated into applications and scaled as needed. +- Reproducible environments: Package models with their dependencies, ensuring + consistent behavior across development and production environments. +- Framework support: Find models built with popular frameworks like TensorFlow, + PyTorch, scikit-learn, and others. + +Containerized AI models remove the need to manage infrastructure dependencies, +let you deploy models across different environments, and enable scaling as +application demands change. + +#### Plugins + +Plugins in Docker Hub let you extend and customize Docker Engine to suit +specialized requirements. Plugins integrate directly with the Docker Engine and +provide capabilities such as: + +- Network plugins: Enhance networking functionality, enabling integration with + complex network infrastructures. +- Volume plugins: Provide advanced storage options, supporting persistent and + distributed storage across various backends. +- Authorization plugins: Offer fine-grained access control to secure Docker + environments. + +By leveraging Docker plugins, teams can tailor Docker Engine to meet their +specific operational needs, ensuring compatibility with existing infrastructures +and workflows. + +To learn more about plugins, see [Docker Engine managed plugin +system](/manuals/engine/extend/_index.md). + + ### Trusted content Docker Hub's trusted content provides a curated selection of high-quality, @@ -92,11 +160,19 @@ secure images designed to give developers confidence in the reliability and security of the resources they use. These images are stable, regularly updated, and adhere to industry best practices, making them a strong foundation for building and deploying applications. Docker Hub's trusted content includes, -Docker Official Images, Verified Publisher images, and Docker-Sponsored Open -Source Software images. +Docker Hardened Images, Docker Official Images, Verified Publisher images, and +Docker-Sponsored Open Source Software images. For more details, see [Trusted content](./trusted-content.md). +### Publishers + +The **Publishers** filter lets you narrow image results by the organization +that published the image. + +Publishers of trusted content appear first. Only a select number of publishers +are shown. + ### Categories Docker Hub makes it easy to find and explore container images with categories. @@ -164,4 +240,4 @@ extension has been reviewed by Docker for quality and reliability. > [!NOTE] > > The **Reviewed by Docker** filter is only available for extensions. To make -> the filter available, you must select only the **Extensions** filter in **Products**. \ No newline at end of file +> the filter available, you must select only the **Extensions** filter in **Products**. diff --git a/content/manuals/docker-hub/image-library/trusted-content.md b/content/manuals/docker-hub/image-library/trusted-content.md index 76194929c6cc..efa4ac235743 100644 --- a/content/manuals/docker-hub/image-library/trusted-content.md +++ b/content/manuals/docker-hub/image-library/trusted-content.md @@ -12,9 +12,9 @@ Docker Hub's trusted content provides a curated selection of high-quality, secure images designed to give developers confidence in the reliability and security of the resources they use. These images are stable, regularly updated, and adhere to industry best practices, making them a strong foundation for -building and deploying applications. Docker Hub's trusted content includes, -Docker Official Images, Verified Publisher images, and Docker-Sponsored Open -Source Software images. +building and deploying applications. Docker Hub's trusted content includes +Docker Official Images, Docker Hardened Images and charts, Verified Publisher +images, and Docker-Sponsored Open Source Software images. ## Docker Official Images @@ -165,6 +165,29 @@ Images began expiring. To resolve pull failures, unset the `DOCKER_CONTENT_TRUST environment variable. For more details, see the [DCT retirement blog post](https://www.docker.com/blog/retiring-docker-content-trust/). +## Docker Hardened Images + +Docker Hardened Images (DHI) are minimal, secure, and production-ready +container base and application images maintained by Docker. DHI also includes +Docker-provided hardened Helm charts built from upstream sources and published +as OCI artifacts in Docker Hub. + +DHI is designed to reduce vulnerabilities and simplify compliance while fitting +into existing Docker workflows with little to no retooling required. Docker +maintains near-zero CVEs in DHI images, and DHI images and charts include +signed security metadata such as SBOMs and provenance attestations. + +Image and chart repositories have special badges +on Docker Hub, making it easier to identify trusted DHI content. + +![Docker Hardened Image badge](../images/dhi-image-label.png) + +![Docker Hardened Chart badge](../images/dhi-chart-label.png) + +To browse available repositories, see the [Docker Hardened Images +catalog](https://hub.docker.com/hardened-images/catalog). For implementation +guidance, see [Docker Hardened Images](/dhi/). + ## Verified Publisher images The Docker Verified Publisher program provides high-quality images from @@ -189,4 +212,4 @@ Images that are part of this program have a special badge on Docker Hub making it easier for users to identify projects that Docker has verified as trusted, secure, and active open-source projects. -![Docker-Sponsored Open Source badge](../images/sponsored-badge-iso.png) \ No newline at end of file +![Docker-Sponsored Open Source badge](../images/sponsored-badge-iso.png) diff --git a/content/manuals/docker-hub/images/dhi-chart-label.png b/content/manuals/docker-hub/images/dhi-chart-label.png new file mode 100644 index 000000000000..abe3eb6b5f55 Binary files /dev/null and b/content/manuals/docker-hub/images/dhi-chart-label.png differ diff --git a/content/manuals/docker-hub/images/dhi-image-label.png b/content/manuals/docker-hub/images/dhi-image-label.png new file mode 100644 index 000000000000..b1bf81f0d0c4 Binary files /dev/null and b/content/manuals/docker-hub/images/dhi-image-label.png differ diff --git a/content/manuals/docker-hub/repos/manage/trusted-content/_index.md b/content/manuals/docker-hub/repos/manage/trusted-content/_index.md index 0ae04840e94a..4a00bc2931a4 100644 --- a/content/manuals/docker-hub/repos/manage/trusted-content/_index.md +++ b/content/manuals/docker-hub/repos/manage/trusted-content/_index.md @@ -29,4 +29,8 @@ In this section, learn about: through vulnerability analysis. - [Insights and analytics](./insights-analytics.md): Access detailed metrics on image and extension usage, including pull counts, geolocation, and client - data, to understand user behavior and optimize your content. \ No newline at end of file + data, to understand user behavior and optimize your content. + +For Docker Hardened Images guidance, including how to contribute, see +[Contribute to the catalog](/dhi/how-to/build/#contribute-to-the-catalog) in the +dedicated DHI docs section.