Skip to main content

About Hardened Images

Images are scanned for vulnerabilities at build time, and additional security protections have been added to decrease potential weaknesses:

  • For Kubernetes/RKE2 Images are not simply mirrored from upstream builds. The images are built from source on top of a hardened minimal base image, which is currently SLE Base Container Image (BCI).
  • Any binaries that are written in Go are compiled using a FIPS 140-2 compliant build process. For more information on this compiler, refer here.