Summary:
PR scanning was delayed from 11:21 AM to 14:42 IST on 18th October 2024 (Israel time).
Timeline:
Root Cause:
During our RCA, we identified that the secret detector Docker image was missing the latest-<env>
tag. This tag marks the image as deployed in a specific environment (e.g., STG, EU, US) and is crucial because docker registry image cleanup policy retains any image with the latest
tag prefix. Additionally, every image is tagged with a main-<sha>
tag, and another cleanup policy removes images tagged this way after 90 days, unless they also have the latest
tag. However, the image in question should not have been deleted, as it was created only seven days prior.
Conclusion:
Adding the latest-<env>
tag will prevent the image from being inadvertently deleted in the future.
Action Items:
latest-<env>
.