diff --git a/Dockerfile.clients.rh b/Dockerfile.clients.rh index 6822ef8445a..ee3f957ddbc 100644 --- a/Dockerfile.clients.rh +++ b/Dockerfile.clients.rh @@ -7,7 +7,7 @@ FROM quay.io/securesign/fetch-tsa-certs@sha256:3e603d431de9994d16f4c0192bba556f0 # Provides the Trusted Artifact Signer CLI binaries, rekor-cli and ec FROM quay.io/securesign/rekor-cli@sha256:0b151afea8b24d0a6a046cf79d6aa9de4a0474e1d404eaf70fa74b42f6c0f8b7 as rekor -FROM registry.redhat.io/rhtas/ec-rhel9:0.8-1776366841@sha256:e4dafcf2793e5bd050aff6d458bb161aa9c018f8df43a0142a8b1d6eaea78c9a as ec +FROM registry.redhat.io/rhtas/ec-rhel9:0.8-1776979197@sha256:80e7f65efc0bfabaf474f137e4584d986bbeba3303c8388cdc4c67e654d62219 as ec # Provides the Trusted Artifact Signer CLI binaries trillian-createtree and trillian-updatetree FROM quay.io/securesign/trillian-createtree@sha256:98c1e1b8bfe382b956bfa176b70836e020050388f301a380d0f37c5e7e12fd1a as trillian-createtree @@ -15,7 +15,7 @@ FROM quay.io/securesign/trillian-updatetree@sha256:92b72e167985c50e6dedbc2e753c5 FROM quay.io/securesign/cli-tuftool@sha256:c45e56769e47613bd49ac0d84ba009b2c3b50e8deec6e26a73fd7e230dd627fd as tuf-tool -FROM registry.redhat.io/ubi9/httpd-24@sha256:06a9ae77db5dd740511ca4dd14f53c245852ba500676869f0e38088b3ab580df +FROM registry.redhat.io/ubi9/httpd-24@sha256:658995aa4d6022ab3cf0f33dcf266ac8af26e47f6ddabec7fb906fd3d7a1b48d ENV APP_ROOT=/opt/app-root WORKDIR $APP_ROOT/src/ diff --git a/Dockerfile.cosign.rh b/Dockerfile.cosign.rh index 85c9659e731..ba6b30a57cc 100644 --- a/Dockerfile.cosign.rh +++ b/Dockerfile.cosign.rh @@ -1,6 +1,6 @@ # Build stage -FROM registry.redhat.io/ubi9/go-toolset:9.7-1776763740@sha256:d637b9dfccb16623f19b95c43fe5a65b20b722e62753c4445c5d02f9e40b807d AS build-env +FROM registry.redhat.io/ubi9/go-toolset:9.7-1778171507@sha256:f9c8537423d96da6c0e704a7d40a1bd5401c4287a05c7f7f196550a5a375a6b6 AS build-env ENV GOEXPERIMENT=strictfipsruntime ENV CGO_ENABLED=1 @@ -26,7 +26,7 @@ RUN git config --global --add safe.directory /cosign && \ git update-index --no-assume-unchanged Dockerfile.cosign.rh # Install Cosign -FROM registry.access.redhat.com/ubi9/ubi-minimal@sha256:8e5f23f039511fbb19fcd95b7caa0bbfbf1780ed14d300c3539df6f1040e285d +FROM registry.access.redhat.com/ubi9/ubi-minimal@sha256:fbae396c8a47549501221dc5de79359f2c8110be9bd611d4883518ee14f85d2c LABEL description="Cosign is a container signing tool that leverages simple, secure, and auditable signatures based on simple primitives and best practices." LABEL io.k8s.description="Cosign is a container signing tool that leverages simple, secure, and auditable signatures based on simple primitives and best practices."