Open guypritchard opened 2 years ago
As a Project Architect I WANT TO Ensure that base images being used are the exact images intended SO THAT I know that unexpected code isn't shipped with services which depend on these images.
Note. The Security Documentation talks about this:
All referenced based images used specify their image digest Sha256 hash in their docker file.
Strong 3
As a Project Architect I WANT TO Ensure that base images being used are the exact images intended SO THAT I know that unexpected code isn't shipped with services which depend on these images.
Acceptance Criteria
All referenced based images used specify their image digest Sha256 hash in their docker file.