Why
Without the digest, anyone pulling images directly from the public registry could be at risk of supply chain problems. While existing images tags should not be getting overwritten, without an image digest in the helm chart any repush will automatically propagate out to those users.
Proposal Explicitly set the image digests in the helm chart, while still allowing users to remove them if desired.
E.G.
Why Without the digest, anyone pulling images directly from the public registry could be at risk of supply chain problems. While existing images tags should not be getting overwritten, without an image digest in the helm chart any repush will automatically propagate out to those users.