1. Proposed title of this feature request

Add lastUpdated field to list of custom policy fields

2. What is the nature and description of the request?

We are looking to enhance our cybersecurity posture, and along with that we would like to start implementing preventative policies within ACS to deny stale images from being deployed. When trying to do that, we see the only applicable field we can use within the custom policy creation process is the "Image age" field. This does not work well with our image creation process, since we use base images and patch layers on top of them. This ends up appearing as if we are using old images when in reality they have been updated.

Looking in the ImageService API, and podman inspect output, we can see that the images have a lastUpdated field. Would it be possible to add the lastUpdated field to the list of fields in the custom policy rules? Describe the impact to you or the business This would much better fit how we patch images and would greatly assist us in the enforcement of denying stale images from being deployed.

3. Why does the customer need this? (List the business requirements here)

This would much better fit how we patch images and would greatly assist us in the enforcement of denying stale images from being deployed.

4. List any affected packages or components.

None known