Uploaded image for project: 'Red Hat Advanced Cluster Security'
  1. Red Hat Advanced Cluster Security
  2. ROX-30613

RHACS Policy incorrectly flags images with the same SHA from different registries

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • 4.10.0
    • 4.7.0
    • RHACS
    • Security & Compliance
    • False
    • Hide

      None

      Show
      None
    • False

      A bug exists in how RHACS policies handle images that share the same image digest (SHA256) but originate from different registries or repositories. The policy seems to be confusing images based on their SHA value, failing to correctly differentiate them by their full image reference, including the registry name.

      Expected Behavior:

      The RHACS policy should correctly identify that the deployed image does not match the policy criteria. No violation should be triggered, as the policy is specific to registry1.example.com.

      Actual Behavior:

      The RHACS policy incorrectly flags the deployment of registry2.example.com/my-image:v1 as a violation. The policy appears to be matching solely on the image SHA, ignoring the distinct registry and repository components of the image name.

       

              Unassigned Unassigned
              rhn-support-smartand Saurabh Martande
              ACS Core Workflows
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated: