1.0.8

Added

• docker-compose support: using privileged in a service

Changed

• docker-compose support: works with any yaml files that starts with docker

1.0.7

Changed

• Removing env with secret remove entire line instead only variable
• Quick action to replace digest shows before quick action with adding user
• Inspections works with different file names of Dockerfiles
• Healthcheck CMD instruction no more conflicting with existed CMD

Added

• Quick action for removing referring to the current image
• Tracking image versions from environment variables

1.0.6

• Tracking exposing insecure ports in docker files
• Disabled missing healthcheck instruction to find better way to highlight low priority problems

1.0.5

Added

• docker-compose support: using root user
• missing HEALTHCHECK instruction
• using apt instead apt-get or apt-cache

Fixed

• bug with removing stage name after using quick fix

1.0.4

Little step to implement docker compose inspections

Added

• docker-compose support: using unsafe images

1.0.3

Added

• Added zypper, dnf, yum auto-confirm checks
• Added additional zypper dist-upgrade check
• Use arguments JSON notation for CMD and ENTRYPOINT arguments

Changed

• Improved tracking image name specified by arguments
• Inspections merged by Dockerfile instructions
• Improved thread-safety for complex inspections

1.0.2

Added

• Looking for secrets in environment variables
• Looking for curl bashing
• Looking for unsafe RUN calls with dynamic arguments
• Looking for apt-get without --no-install-recommends
• RUN inspections works with JSON notation

Changed

• Most of RUN inspections were merge to one and moved to extensions
• USER command now tracking ARGS variables
• Updated highlighting types
• Higher supported IDE version now is 243
• Improved FROM parser for supporting image names with slash