-
Bug
-
Resolution: Unresolved
-
Undefined
-
4.7.0
-
Security & Compliance
-
False
-
-
False
-
-
-
A bug exists in how RHACS policies handle images that share the same image digest (SHA256) but originate from different registries or repositories. The policy seems to be confusing images based on their SHA value, failing to correctly differentiate them by their full image reference, including the registry name.
Expected Behavior:
The RHACS policy should correctly identify that the deployed image does not match the policy criteria. No violation should be triggered, as the policy is specific to registry1.example.com.
Actual Behavior:
The RHACS policy incorrectly flags the deployment of registry2.example.com/my-image:v1 as a violation. The policy appears to be matching solely on the image SHA, ignoring the distinct registry and repository components of the image name.