chore(deps): update docker images

red-hat-konflux[bot] · web-flow · commit 4abeb738e7fb · 2026-05-05T12:19:39.000Z
Signed-off-by: red-hat-konflux &lt;126015336+red-hat-konflux[bot]@users.noreply.github.com&gt;
diff --git a/Dockerfile.clients.rh b/Dockerfile.clients.rh
@@ -7,15 +7,15 @@ FROM quay.io/securesign/fetch-tsa-certs@sha256:3e603d431de9994d16f4c0192bba556f0
 
 # Provides the Trusted Artifact Signer CLI binaries, rekor-cli and ec
 FROM quay.io/securesign/rekor-cli@sha256:0b151afea8b24d0a6a046cf79d6aa9de4a0474e1d404eaf70fa74b42f6c0f8b7 as rekor
-FROM registry.redhat.io/rhtas/ec-rhel9:0.8-1776366841@sha256:e4dafcf2793e5bd050aff6d458bb161aa9c018f8df43a0142a8b1d6eaea78c9a as ec
+FROM registry.redhat.io/rhtas/ec-rhel9:0.8-1776979197@sha256:80e7f65efc0bfabaf474f137e4584d986bbeba3303c8388cdc4c67e654d62219 as ec
 
 # Provides the Trusted Artifact Signer CLI binaries trillian-createtree and trillian-updatetree
 FROM quay.io/securesign/trillian-createtree@sha256:98c1e1b8bfe382b956bfa176b70836e020050388f301a380d0f37c5e7e12fd1a as trillian-createtree
 FROM quay.io/securesign/trillian-updatetree@sha256:92b72e167985c50e6dedbc2e753c52164c70bf1e589f68e7aa61140759707d41 as trillian-updatetree
 
 FROM quay.io/securesign/cli-tuftool@sha256:c45e56769e47613bd49ac0d84ba009b2c3b50e8deec6e26a73fd7e230dd627fd as tuf-tool
 
-FROM registry.redhat.io/ubi9/httpd-24@sha256:06a9ae77db5dd740511ca4dd14f53c245852ba500676869f0e38088b3ab580df
+FROM registry.redhat.io/ubi9/httpd-24@sha256:5ea6383a93898a984884300a6186dc95d5eaeeb342e9ee5878961532e670671f
 ENV APP_ROOT=/opt/app-root
 WORKDIR $APP_ROOT/src/
 
diff --git a/Dockerfile.cosign.rh b/Dockerfile.cosign.rh
@@ -1,6 +1,6 @@
 # Build stage
 
-FROM registry.redhat.io/ubi9/go-toolset:9.7-1776763740@sha256:d637b9dfccb16623f19b95c43fe5a65b20b722e62753c4445c5d02f9e40b807d AS build-env
+FROM registry.redhat.io/ubi9/go-toolset:9.7-1777898790@sha256:59ec4752cf86f0d0dd240b9e29c64d6ee560c28fc986171e126db1db216a246a AS build-env
 
 ENV GOEXPERIMENT=strictfipsruntime
 ENV CGO_ENABLED=1
@@ -26,7 +26,7 @@ RUN git config --global --add safe.directory /cosign && \
     git update-index --no-assume-unchanged Dockerfile.cosign.rh
 
 # Install Cosign
-FROM registry.access.redhat.com/ubi9/ubi-minimal@sha256:8e5f23f039511fbb19fcd95b7caa0bbfbf1780ed14d300c3539df6f1040e285d
+FROM registry.access.redhat.com/ubi9/ubi-minimal@sha256:d74e602f6aa515f84566c263019a5f63ec4fc6a3100f6757f353b087ac6d1922
 
 LABEL description="Cosign is a container signing tool that leverages simple, secure, and auditable signatures based on simple primitives and best practices."
 LABEL io.k8s.description="Cosign is a container signing tool that leverages simple, secure, and auditable signatures based on simple primitives and best practices."
