Unpinned Docker image

AI security governance · MCP security

Severity

high

What it is

A Docker image uses the :latest tag or no tag, which can be mutated by an attacker.

How Igris detects it

Igris's Version Pinning Checker flags this during MCP security scans of your configuration.

References

Related MCP security rules

Secure your AI estate with Igris