Now serving · 0 open CVE
Containers,
Containers,
secured.
Hardened container images for regulated and security-critical environments. Cryptographically signed end-to-end, scanned to zero CVE, and rebuilt within hours of any new advisory.
$docker pull images.rasid.cc/python-3.12:latest
latest: Pulling from python-3.12 Digest: sha256:0513c05dc1c263… Status: Downloaded newer image $cosign verify --key https://rasid.cc/.well-known/rasid-cosign.pub images.rasid.cc/python-3.12:latest
✓ signatures verified against the specified public key ✓ cosign claims validated ✓ SBOM (SPDX) attached and verified What you get
Zero open CVE. Signed. Full SBOM.
01
Signed end-to-end
Cosign signatures on every tag. Fail-closed verification in CI before your build runs.
02
Zero CVE at release
New advisory affects what we ship? Rebuilt within four hours.
03
Full SBOM, always
SPDX, CycloneDX, in-toto attestations, OpenVEX advisories — with every image.
Enterprise
FIPS. Air-gapped. On your stack.
The public catalogue is free forever. Enterprise adds validated cryptography, offline delivery bundles, custom hardening on your stack, and SLA-backed rebuild commitments.