Docker image: Add at least SHA-256 hash check for GeoIP deb package #63
Description
The Dockerfile does not check the hash of the GeoIP deb package.
This can be a vector of attack in a supply chain attack.
The Dockerfile should add a step to check the SHA-256 checksum of this package before installing it.
Metadata
Metadata
Assignees
Labels
No labels