hadolint/DL3007

Using latest is prone to errors if the image will ever update. Pin the version explicitly to a release tag.

Property	Value
Severity	Warning
Category	Best Practice
Default	Enabled

Description

You can never rely that the latest tag is a specific version. Pin the version explicitly to a release tag to ensure reproducible builds.

Examples

Problematic code

FROM debian:latest

Correct code

FROM debian:jessie

Reference

hadolint/DL3007

Overview

Security

Correctness

Performance

Style

GPU / CUDA

PHP

PowerShell

Windows

BuildKit Rules

Hadolint Rules

ShellCheck Rules

hadolint/DL3007

Description

Examples

Problematic code

Correct code

Reference

Overview

Security

Correctness

Performance

Style

GPU / CUDA

PHP

PowerShell

Windows

BuildKit Rules

Hadolint Rules

ShellCheck Rules

​Description

​Examples

​Problematic code

​Correct code

​Reference

Description

Examples

Problematic code

Correct code

Reference