Pattern: Missing version pinning for apk add
Issue: -
Version pinning forces the build to retrieve a particular version regardless of what’s in the cache. This technique can also reduce failures due to unanticipated changes in required packages.
Example of incorrect code:
RUN apk --no-cache add s3cmdExample of correct code:
RUN apk --no-cache add s3cmd=1.1.0