I believe that S6497: Using a container image based on its digest is security-sensitive advises users to do the opposite of what they should be doing, so I’ve created a topic requesting that the rule be changed: "S6497: Pulling an image based on its digest is security-sensitive" is harmful to security
candrews
(Craig Andrews)
2
Related topics
| Topic | Replies | Views | Activity | |
|---|---|---|---|---|
| 7 additional new rules to clean your Dockerfiles | 2 | 825 | April 13, 2023 | |
| Dockerfile analysis is available on SonarQube and SonarCloud | 0 | 4847 | February 7, 2023 | |
| "S6497: Pulling an image based on its digest is security-sensitive" is harmful to security | 7 | 1195 | August 24, 2023 | |
| safeImages list in docker:S6471 rule not honored | 2 | 64 | March 18, 2026 | |
| 12 new rules to have intentional and consistent Dockerfiles | 0 | 2023 | October 6, 2023 |