diff --git a/content/manuals/dhi/core-concepts/cves.md b/content/manuals/dhi/core-concepts/cves.md index a3c0a91c2c..f58c1f48b4 100644 --- a/content/manuals/dhi/core-concepts/cves.md +++ b/content/manuals/dhi/core-concepts/cves.md @@ -41,7 +41,7 @@ CVE mitigation: 95% smaller than traditional images, limits the number of potential vulnerabilities, making it harder for attackers to exploit unneeded software. -- Faster CVE remediation: Maintained by Docker with an enterprise-grade SLA, +- Faster CVE remediation: Maintained by Docker with an [enterprise-grade SLA](https://www.docker.com/static/support-service-level-agreement-for-dhi.pdf), DHIs are continuously updated to address known vulnerabilities. Critical and high-severity CVEs are patched quickly, ensuring that your containers remain secure without manual intervention. diff --git a/content/manuals/dhi/core-concepts/sscs.md b/content/manuals/dhi/core-concepts/sscs.md index 52f7c28f66..a83ee0ddba 100644 --- a/content/manuals/dhi/core-concepts/sscs.md +++ b/content/manuals/dhi/core-concepts/sscs.md @@ -47,6 +47,6 @@ following features: assess and mitigate risks effectively. - Continuous maintenance and rapid CVE remediation: Docker maintains DHIs with - regular updates and security patches, backed by an SLA for addressing critical - and high-severity vulnerabilities. This proactive approach helps ensure that - images remain secure and compliant with enterprise standards. \ No newline at end of file + regular updates and security patches, backed by an [SLA for addressing critical + and high-severity vulnerabilities](https://www.docker.com/static/support-service-level-agreement-for-dhi.pdf). This proactive approach helps ensure that + images remain secure and compliant with enterprise standards. diff --git a/content/manuals/dhi/explore/build-process.md b/content/manuals/dhi/explore/build-process.md index 5154bd4b7c..a63bbe5296 100644 --- a/content/manuals/dhi/explore/build-process.md +++ b/content/manuals/dhi/explore/build-process.md @@ -14,7 +14,7 @@ This page explains the build process for both base DHI images and customized images available with DHI Select and DHI Enterprise subscriptions. With DHI Select or DHI Enterprise subscriptions, the automated security update pipeline for -both base and customized images is backed by SLA commitments, including a 7-day +both base and customized images is backed by [SLA commitments](https://www.docker.com/static/support-service-level-agreement-for-dhi.pdf), including a 7-day SLA for critical and high severity vulnerabilities. DHI Community offers a secure baseline but no guaranteed remediation timelines. @@ -131,8 +131,8 @@ Docker responds quickly to critical vulnerabilities. By building essential components from source rather than waiting for packaged updates, Docker can patch critical and high severity CVEs within days of upstream fixes and publish updated images with new attestations. For DHI Enterprise subscriptions, this -rapid response is backed by a 7-day SLA for critical and high severity -vulnerabilities. +rapid response is backed by a [7-day SLA for critical and high severity +vulnerabilities](https://www.docker.com/static/support-service-level-agreement-for-dhi.pdf). The following diagram shows the base image build flow: diff --git a/content/manuals/dhi/explore/responsibility.md b/content/manuals/dhi/explore/responsibility.md index cd03c4b0de..e2cc019382 100644 --- a/content/manuals/dhi/explore/responsibility.md +++ b/content/manuals/dhi/explore/responsibility.md @@ -39,7 +39,7 @@ securely. including fixing vulnerabilities in libraries and dependencies. - Docker: Rebuilds and re-releases images with upstream patches applied. Docker monitors for vulnerabilities and publishes updates to affected images. DHI Select - and DHI Enterprise include SLA commitments. DHI Community offers a secure baseline but no + and DHI Enterprise include [SLA commitments](https://www.docker.com/static/support-service-level-agreement-for-dhi.pdf). DHI Community offers a secure baseline but no guaranteed remediation timelines. - You: Apply DHI updates in your environments and patch any software or dependencies you install on top of the base image. diff --git a/content/manuals/dhi/explore/what.md b/content/manuals/dhi/explore/what.md index a991083e34..6167ef6a56 100644 --- a/content/manuals/dhi/explore/what.md +++ b/content/manuals/dhi/explore/what.md @@ -91,7 +91,7 @@ maintained so you don't have to. They offer: - Images built for peace of mind: Ultra-minimal and distroless, DHIs eliminate up to 95% of the traditional container attack surface. -- No more patch panic: With continuous CVE scanning and SLA-backed remediation, Docker helps you stay ahead of threats. +- No more patch panic: With continuous CVE scanning and [SLA-backed remediation](https://www.docker.com/static/support-service-level-agreement-for-dhi.pdf), Docker helps you stay ahead of threats. - Audit-ready images: All DHIs include signed SBOMs, VEX, and provenance that support security and compliance workflows. - Images that work with your stack: Available in Alpine and Debian flavors, DHIs drop into your existing Dockerfiles and pipelines. - Images backed by enterprise support: Get peace of mind with Docker's support and rapid response to critical vulnerabilities. diff --git a/content/manuals/dhi/features.md b/content/manuals/dhi/features.md index 4446da3d27..393cede64a 100644 --- a/content/manuals/dhi/features.md +++ b/content/manuals/dhi/features.md @@ -122,6 +122,8 @@ comparison](https://www.docker.com/products/hardened-images/#compare). - Continuous patching: Regular security updates backed by SLA commitments - Enterprise support: Access to Docker's support team for mission-critical applications +For complete details, see the [Support Service Level Agreement](https://www.docker.com/static/support-service-level-agreement-for-dhi.pdf). + ### Compliance variants {tier="DHI Select & DHI Enterprise"} - FIPS-enabled images: For regulated industries and government systems diff --git a/content/manuals/dhi/how-to/mirror.md b/content/manuals/dhi/how-to/mirror.md index f488f9c8e7..0d0ac6ea8a 100644 --- a/content/manuals/dhi/how-to/mirror.md +++ b/content/manuals/dhi/how-to/mirror.md @@ -16,7 +16,7 @@ mirroring. With a DHI Select or Enterprise subscription, you must mirror to get: - Extended Lifecycle Support (ELS) variants (requires add-on) - Image or Helm chart customization - Air-gapped or restricted network environments -- SLA-backed security updates +- [SLA-backed security updates](https://www.docker.com/static/support-service-level-agreement-for-dhi.pdf) ## How to mirror diff --git a/content/manuals/dhi/resources.md b/content/manuals/dhi/resources.md index 805ff6746f..fe84144a60 100644 --- a/content/manuals/dhi/resources.md +++ b/content/manuals/dhi/resources.md @@ -70,6 +70,8 @@ organization: - [Start a free trial](https://hub.docker.com/hardened-images/start-free-trial): Explore DHI Select and Enterprise features including FIPS/STIG variants, customization, and SLA-backed support +- [Support Service Level Agreement](https://www.docker.com/static/support-service-level-agreement-for-dhi.pdf): + Review the SLA commitments for DHI Select and Enterprise subscriptions - [Request a demo](https://www.docker.com/products/hardened-images/#getstarted): Get a personalized demo and information about DHI Select and Enterprise subscriptions - [Request an image](https://github.com/docker-hardened-images/catalog/issues):