Validating Docker Builds with .rego Policies: Because "It Works on My Machine" Isn't a Security Strategy
We've all been there. It's 2 AM, the CI pipeline is green, and you ship your container to production feeling like a DevOps rockstar. Then Monday morning rolls around and someone discovers that your Dockerfile pulled a base image from some-dude-on-the-internet/totally-legit-node:latest. Oops.
In the