up1 · December 23, 2025 17:47
diff --git a/1.txt b/1.txt
 # 1. Build image
 $docker image build -t demo:1.0 .

 # 2. Scan image
 $grype demo:1.0     

 ✔ Loaded image                                                                                                              demo:1.0 
 ✔ Parsed image                                               sha256:d9174a6052c58081feb46f149324030dc1b79fe3e084b0b3288912e22780de07 
 ✔ Cataloged contents                                                994d063915c32eed9c71055bc892010324ddaa7ba517e6e94557c528128ccfd0 
   ├── ✔ Packages                        [38 packages]  
   ├── ✔ Executables                     [66 executables]  
   ├── ✔ File digests                    [253 files]  
   └── ✔ File metadata                   [253 locations]  
 ✔ Scanned for vulnerabilities     [6 vulnerability matches]  
   ├── by severity: 0 critical, 0 high, 0 medium, 6 low, 0 negligible
 NAME           INSTALLED   FIXED IN    TYPE  VULNERABILITY   SEVERITY  EPSS          RISK   
 busybox        1.37.0-r19  1.37.0-r20  apk   CVE-2024-58251  Low       < 0.1% (4th)  < 0.1  
 busybox-binsh  1.37.0-r19  1.37.0-r20  apk   CVE-2024-58251  Low       < 0.1% (4th)  < 0.1  
 ssl_client     1.37.0-r19  1.37.0-r20  apk   CVE-2024-58251  Low       < 0.1% (4th)  < 0.1  
 busybox        1.37.0-r19  1.37.0-r20  apk   CVE-2025-46394  Low       < 0.1% (3rd)  < 0.1  
 busybox-binsh  1.37.0-r19  1.37.0-r20  apk   CVE-2025-46394  Low       < 0.1% (3rd)  < 0.1  
 ssl_client     1.37.0-r19  1.37.0-r20  apk   CVE-2025-46394  Low       < 0.1% (3rd)  < 0.1

diff --git a/2.txt b/2.txt
 # 1. Build image
 $docker login dhi.io
 $docker pull dhi.io/golang:1.24-alpine3.22
 $docker image build -t demo:dhi -f Dockerfile-dhi .

 # 2. Scan image
 $grype demo:dhi

 ✔ Loaded image                                                                                                              demo:dhi 
 ✔ Parsed image                                               sha256:fb4fca1bcbd6ced916216ccbb3c3b2abc19cccf9007116f864379c08ea46ca49 
 ✔ Cataloged contents                                                d0946f44c376aab20a4d9c16ee7d2f5e7bf9d3f744fd093b6c2adc9a8c1b3c0e 
   ├── ✔ Packages                        [26 packages]  
   ├── ✔ Executables                     [49 executables]  
   ├── ✔ File metadata                   [390 locations]  
   └── ✔ File digests                    [390 files]  
 ✔ Scanned for vulnerabilities     [0 vulnerability matches]  
   ├── by severity: 0 critical, 0 high, 0 medium, 0 low, 0 negligible
 No vulnerabilities found
diff --git a/Dockerfile b/Dockerfile
 FROM golang:1.24.11-alpine3.22
 WORKDIR /app
 COPY . .
 RUN go mod download
 CMD ["go", "run", "main.go"]
diff --git a/Dockerfile-dhi b/Dockerfile-dhi
 FROM dhi.io/golang:1.24-alpine3.22
 WORKDIR /app
 COPY . .
 RUN go mod download
 CMD ["go", "run", "main.go"]
	# 1. Build image
	$docker image build -t demo:1.0 .

	# 2. Scan image
	$grype demo:1.0

	✔ Loaded image demo:1.0
	✔ Parsed image sha256:d9174a6052c58081feb46f149324030dc1b79fe3e084b0b3288912e22780de07
	✔ Cataloged contents 994d063915c32eed9c71055bc892010324ddaa7ba517e6e94557c528128ccfd0
	├── ✔ Packages [38 packages]
	├── ✔ Executables [66 executables]
	├── ✔ File digests [253 files]
	└── ✔ File metadata [253 locations]
	✔ Scanned for vulnerabilities [6 vulnerability matches]
	├── by severity: 0 critical, 0 high, 0 medium, 6 low, 0 negligible
	NAME INSTALLED FIXED IN TYPE VULNERABILITY SEVERITY EPSS RISK
	busybox 1.37.0-r19 1.37.0-r20 apk CVE-2024-58251 Low < 0.1% (4th) < 0.1
	busybox-binsh 1.37.0-r19 1.37.0-r20 apk CVE-2024-58251 Low < 0.1% (4th) < 0.1
	ssl_client 1.37.0-r19 1.37.0-r20 apk CVE-2024-58251 Low < 0.1% (4th) < 0.1
	busybox 1.37.0-r19 1.37.0-r20 apk CVE-2025-46394 Low < 0.1% (3rd) < 0.1
	busybox-binsh 1.37.0-r19 1.37.0-r20 apk CVE-2025-46394 Low < 0.1% (3rd) < 0.1
	ssl_client 1.37.0-r19 1.37.0-r20 apk CVE-2025-46394 Low < 0.1% (3rd) < 0.1
	# 1. Build image
	$docker login dhi.io
	$docker pull dhi.io/golang:1.24-alpine3.22
	$docker image build -t demo:dhi -f Dockerfile-dhi .

	# 2. Scan image
	$grype demo:dhi

	✔ Loaded image demo:dhi
	✔ Parsed image sha256:fb4fca1bcbd6ced916216ccbb3c3b2abc19cccf9007116f864379c08ea46ca49
	✔ Cataloged contents d0946f44c376aab20a4d9c16ee7d2f5e7bf9d3f744fd093b6c2adc9a8c1b3c0e
	├── ✔ Packages [26 packages]
	├── ✔ Executables [49 executables]
	├── ✔ File metadata [390 locations]
	└── ✔ File digests [390 files]
	✔ Scanned for vulnerabilities [0 vulnerability matches]
	├── by severity: 0 critical, 0 high, 0 medium, 0 low, 0 negligible
	No vulnerabilities found
	FROM golang:1.24.11-alpine3.22
	WORKDIR /app
	COPY . .
	RUN go mod download
	CMD ["go", "run", "main.go"]
	FROM dhi.io/golang:1.24-alpine3.22
	WORKDIR /app
	COPY . .
	RUN go mod download
	CMD ["go", "run", "main.go"]