Red Hat announced on May 12 the general availability of Red Hat Hardened Images, a catalog of trusted micro-sized container components designed to help organizations pursue Zero-CVE strategies. The new offering is intended to accelerate the development and deployment of cloud-native applications across different environments, including on-premises datacenters and public clouds.
The launch addresses concerns about software supply chain risks associated with container base images. These images can introduce vulnerabilities that developers may not be able to fix directly. By providing pre-hardened, rigorously tested images that include only the files necessary for an application to run, Red Hat aims to streamline security and operational efficiency for its customers.
Gunnar Hellekson, vice president and general manager of Red Hat Enterprise Linux at Red Hat, said: “Modern infrastructure requires a balance between versatility and precision. With Red Hat Hardened Images, we’re providing a highly refined starting point for organizations that need to minimize their footprint without sacrificing the trust of the supply chain. Our goal is to cut through the security noise and give developers a foundation where they can build and scale without having to patch or manage software that their applications do not actually need.”
Katie Norton, research manager at IDC, said: “Container base images are a concentrated point of software supply chain risk, and the vulnerabilities inherited from them often land on developers who have no direct path to remediate them. Red Hat Hardened Images is designed to provide a trusted, verifiable foundation for containerized workloads, intended to help teams meet compliance requirements while maintaining multi-cloud portability. This approach can help enterprises establish a secure default posture without sacrificing flexibility.”
Key features highlighted by Red Hat include high-fidelity security signals by removing non-essential components; streamlined CVE triage between developers and security teams; standardized security profiles supporting strict certifications; built-in Software Bill of Materials (SBOMs) for transparency; distroless architecture reducing potential entry points; trusted application dependencies via verified language packages; automated remediations tracking upstream sources; and multi-cloud portability.
Red Hat Hardened Images are now generally available through its catalog.
