:latest’ tag used
| Property | |
|---|---|
| Language |  |
| Severity |  |
| Vulnerability Type | omission |
Description#
The Dockerfile uses the ’latest’ tag in the ‘FROM’ statement instead of specifying a fixed image version. This can lead to unpredictable builds as the base image may change over time without notice.
Impact#
Relying on the ’latest’ tag can result in unintentional updates to the base image, potentially introducing vulnerabilities, breaking changes, or unstable behavior. Attackers could exploit unexpected image changes to compromise application integrity or security.
Resolution#
Add a tag to the image in the ‘FROM’ statement