Docker Announces Hardened Images Catalog
May 19, 2025

Docker, Inc.® announced Docker Hardened Images (DHI), a curated catalog of security-hardened, enterprise-grade container images designed to meet today’s toughest software supply chain challenges.

Designed with security at the core, Docker Hardened Images are minimal, continuously maintained, and tested to meet enterprise compliance standards. Available directly through Docker Hub, DHI enables developers, security engineers, and platform teams to scale securely without disrupting familiar workflows.

“The complexity of securing container dependencies shouldn’t fall squarely on developers’ shoulders,” said Michael Donovan, vice president of Product at Docker. “With Docker Hardened Images, we’re making it easier for teams to build with trusted and verified components that meet enterprise-grade security and compliance standards without adding friction to their workflow.”

At launch several partners are joining Docker to support the Docker Hardened Images ecosystem, including leading software publishers and security providers. These partners help deliver secure, enterprise-ready images and integrate enhanced scanning, metadata, and compliance insights into existing workflows. Their collaboration reflects the growing demand for trusted, scalable solutions that reduce container risk without slowing development. Partners announced today include Cloudsmith, GitLab, Grype, JFrog, Microsoft, Neo4j, NGINX, Sonatype, Sysdig, and Wiz, with more yet to come.

Docker Hardened Images are built for the real-world needs of enterprise developers and the teams that support them. Whether you’re responsible for building, securing, or scaling applications, DHI helps you move faster with guardrails in place:

- Platform Engineers gain a scalable way to manage secure, compliant images with full control over policies and provenance

- Application Developers can focus on shipping code, not chasing CVEs, with hardened, ready-to-run images integrated into Docker Hub

- Security Engineers get consistent, verifiable artifacts that align with organization-wide security standards and simplify audits

- CISOs gain supply chain visibility and assurance that container dependencies meet compliance expectations out of the box

Docker Hardened Images are engineered to provide maximum security and compliance while staying lightweight, fast, and customizable. Each image is:

- Built to eliminate vulnerabilities, with few-to-zero exploitable CVEs and continuous scanning and updates, all built to meet SLSA Build Level 3 requirements

- Designed for least privilege, running as non-root by default to reduce risk in production

- Minimized by design, based on distroless principles that reduce attack surface and improve startup time, with up to 95% reduction in attack surface

- Compliance-ready: SBOMs, VEX, build provenance, and more — all cryptographically signed.

- Available across multiple distros—including Alpine and Debian—with more to come, supporting a wide range of enterprise environments.

Docker Hardened Images are now available on Docker Hub.

Share this

Industry News

June 11, 2025

SmartBear launched Reflect Mobile featuring HaloAI, expanding its no-code, GenAI-powered test automation platform to include native mobile apps.

June 11, 2025

ArmorCode announced the launch of AI Code Insights.

June 11, 2025

Codiac announced the release of Codiac 2.5, a major update to its unified automation platform for container orchestration and Kubernetes management.

June 10, 2025

Harness Internal Developer Portal (IDP) is releasing major upgrades and new features built to address challenges developers face daily, ultimately giving them more time back for innovation.

June 10, 2025

Azul announced an enhancement to Azul Intelligence Cloud, a breakthrough capability in Azul Vulnerability Detection that brings precision to detection of Java application security vulnerabilities.

June 10, 2025

ZEST Security announced its strategic integration with Upwind, giving DevOps and Security teams real-time, runtime powered cloud visibility combined with intelligent, Agentic AI-driven remediation.

June 09, 2025

Google announced an upgraded preview of Gemini 2.5 Pro, its most intelligent model yet.

June 09, 2025

iTmethods and Coder have partnered to bring enterprises a new way to deploy secure, high-performance and AI-ready Cloud Development Environments (CDEs).

June 09, 2025

Gearset announced the expansion of its new Observability functionality to include Flow and Apex error monitoring.

June 05, 2025

Postman announced new capabilities that make it dramatically easier to design, test, deploy, and monitor AI agents and the APIs they rely on.

June 05, 2025

Opsera announced the expansion of its partnership with Databricks.

June 04, 2025

Postman announced Agent Mode, an AI-native assistant that delivers real productivity gains across the entire API lifecycle.

June 04, 2025

Progress Software announced the Q2 2025 release of Progress® Telerik® and Progress® Kendo UI®, the .NET and JavaScript UI libraries for modern application development.

June 04, 2025

Voltage Park announced the launch of its managed Kubernetes service.