USER PROBLEM
^{What is the user experiencing as a result of the bug? Include steps to reproduce.}

• IHAC enabled OOTB ACS policy “ADD Command used instead of COPY.” In the environment, the application uses a Red Hat UBI image in the Dockerfile. They have no “ADD” line in their Dockerfile. However, they are getting violations from this deployment. I reproduced the behavior in my environment. I also checked the UBI container file, and it does not include any “ADD” in it. Can someone explain why such a violation?

I have a case open (https://access.redhat.com/support/cases/#/case/04257923).

CONDITIONS
^{What conditions need to exist for a user to be affected? Is it everyone? Is it only those with a specific integration? Is it specific to someone with particular database content? etc.}

• I reviewed a few use cases from quay.io and was unable to reproduce this issue. I'll be deploying this UBI image to my environment soon and will update the ticket. 

ROOT CAUSE
^{What is the root cause of the bug?}

• pending

FIX
^{How was the bug fixed (this is more important if a workaround was implemented rather than an actual fix)?}

• pending