Skip to content

Use fixed version tags for Docker images to enable Dependabot monitoring #179

New issue
New issue
Open
Feature
Open
Use fixed version tags for Docker images to enable Dependabot monitoring#179
Feature
Assignees
ThomasMinor
Labels
dependabotChanges related tp dependabot warningsdependenciesPull requests that update a dependency fileenhancementNew feature or request
@ThomasMinor

Description

@ThomasMinor
ThomasMinor
opened on Sep 4, 2025

Currently, Docker images are referenced without fixed version tags, which prevents Dependabot from effectively monitoring and notifying about updates. To improve security and maintainability, update all Docker image references to use fixed version tags. This will allow Dependabot to track updates and alert us when new versions are available.

Action items:

  • Identify all Docker image references in the repository
  • Update references to use fixed version tags (e.g., nginx:1.23.4 instead of nginx:latest)
  • Test to ensure no breaking changes
  • Enable or update Dependabot configuration to monitor these dependencies

This change will help automate dependency updates and improve our workflow.

Metadata

Metadata

Assignees

Labels

dependabotChanges related tp dependabot warningsdependenciesPull requests that update a dependency fileenhancementNew feature or request

Type

Feature

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions