Docker has introduced Hardened Images (DHI), which focus on enhancing security in container environments. These images are designed to be compatible across multiple distributions and offer minimal vulnerabilities, with near-zero Common Vulnerabilities and Exposures (CVEs). A key feature is the inclusion of signed Software Bill of Materials (SBOMs) and SLSA Level 3 provenance, ensuring transparency in the software supply chain. Switching to DHI is straightforward; developers can simply replace their base images without altering their workflows. This approach promises immediate security improvements. Organizations can also choose to pay for more robust service-level agreements (SLAs) or compliance needs when necessary. Docker commits to providing up to five additional years of security updates for users, even after upstream support ends. The offering is open source under the Apache 2.0 license, making it accessible to a wide range of developers. In comparison to alternatives, Docker's Hardened Images are notable for their full transparency and minimal CVE presence. Other options often come with proprietary licenses, limited access, or require significant workflow changes. DHI provides critical CVE fixes in less than seven days and offers lifecycle management, which is crucial for organizations that rely on long-lived workloads. The initiative aims to address the growing concerns around supply chain security, particularly as containers become more common targets for attacks.