chore(deps): update docker images

red-hat-konflux[bot] · web-flow · commit 1fed257a7660 · 2025-12-22T05:32:45.000Z
Signed-off-by: red-hat-konflux &lt;126015336+red-hat-konflux[bot]@users.noreply.github.com&gt;
diff --git a/Dockerfile.clients.rh b/Dockerfile.clients.rh
@@ -21,7 +21,7 @@ FROM --platform=linux/arm64 quay.io/securesign/rekor-cli@sha256:a03f71354d189de9
 FROM --platform=linux/ppc64le quay.io/securesign/rekor-cli@sha256:905a9bb47c3a93347721e948a481a940f39ab0d9ae6c60ba31244c943063fca2 as rekor-ppc64le
 FROM --platform=linux/s390x quay.io/securesign/rekor-cli@sha256:69f1a56caa80cfe938e30e0e99f24dcf24c1e0414802020243056b040a49f857 as rekor-s390x
 
-FROM registry.redhat.io/rhtas/ec-rhel9:0.7@sha256:e77363f2c25d77aa82bccaab68ad3a3ec7917bbf4a618f33f4259891dfbe95ea as ec
+FROM registry.redhat.io/rhtas/ec-rhel9:0.7@sha256:dfba448351ab2cf92eea34d0c6c103110b3d90dda0cd037b5346841e1a3ddd78 as ec
 
 # Provides the Trusted Artifact Signer CLI binaries trillian-createtree and trillian-updatetree
 FROM --platform=linux/amd64 quay.io/securesign/trillian-createtree@sha256:f37313147f9f821f855fe30fdc46ab9c72b449fd0fa82b3b30dc72c1e5559c6e as trillian-createtree-amd64
@@ -36,7 +36,7 @@ FROM --platform=linux/s390x quay.io/securesign/trillian-updatetree@sha256:81883f
 
 FROM quay.io/securesign/cli-tuftool@sha256:3f171dc370c8350bfa6734016a97bd3e129a7f0d0ecedd201e517af7724631e5 as tuf-tool
 
-FROM registry.redhat.io/ubi9/httpd-24@sha256:8536169e5537fe6c330eba814248abdcf39cdd8f7e7336034d74e6fda9544050
+FROM registry.redhat.io/ubi9/httpd-24@sha256:0a99c87a82302e2d857c1038a072d32558df74f71a441ea1805e1b0aa21f0e01
 ENV APP_ROOT=/opt/app-root
 WORKDIR $APP_ROOT/src/
 
diff --git a/Dockerfile.cosign.rh b/Dockerfile.cosign.rh
@@ -27,7 +27,7 @@ RUN git config --global --add safe.directory /cosign && \
     git update-index --no-assume-unchanged Dockerfile.cosign.rh
 
 # Install Cosign
-FROM registry.access.redhat.com/ubi9/ubi-minimal@sha256:61d5ad475048c2e655cd46d0a55dfeaec182cc3faa6348cb85989a7c9e196483
+FROM registry.access.redhat.com/ubi9/ubi-minimal@sha256:6fc28bcb6776e387d7a35a2056d9d2b985dc4e26031e98a2bd35a7137cd6fd71
 
 LABEL description="Cosign is a container signing tool that leverages simple, secure, and auditable signatures based on simple primitives and best practices."
 LABEL io.k8s.description="Cosign is a container signing tool that leverages simple, secure, and auditable signatures based on simple primitives and best practices."
