From 962881195f7d5c2c353a7319bc7c2f12d3f6ed0c Mon Sep 17 00:00:00 2001
From: Atomist Bot <bot@atomist.com>
Date: Sat, 12 Nov 2022 16:36:36 +0000
Subject: [PATCH 1/2] Pin Docker image node:12.18.1

node:12.18.1
->
node:12.18.1@sha256:2b85f4981f92ee034b51a3c8bb22dbb451d650d5c12b6439a169f8adc750e4b6

 [atomist:generated]
 [atomist-skill:atomist/docker-base-image-policy]

Signed-off-by: Atomist Bot <bot@atomist.com>
---
 sample-docker-templates/react/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/sample-docker-templates/react/Dockerfile b/sample-docker-templates/react/Dockerfile
index c89eb45a94..a9a26a58eb 100644
--- a/sample-docker-templates/react/Dockerfile
+++ b/sample-docker-templates/react/Dockerfile
@@ -1,7 +1,7 @@
 ###### BUILD ENVIRONMENT ######
 
 # Base Image
-FROM node:12.18.1 as build
+FROM node:12.18.1@sha256:2b85f4981f92ee034b51a3c8bb22dbb451d650d5c12b6439a169f8adc750e4b6 as build
 
 # Moving into working directory
 WORKDIR /app

From 2fa156380cebd69e7a4c8418f9a7eff63ec1a733 Mon Sep 17 00:00:00 2001
From: Atomist Bot <bot@atomist.com>
Date: Sat, 12 Nov 2022 16:36:38 +0000
Subject: [PATCH 2/2] Pin Docker image nginx:stable-alpine

nginx:stable-alpine
->
nginx:stable-alpine@sha256:2366ede62d2e26a20f7ce7d0294694fe52b166107fd346894e4658dfb5273f9c

 [atomist:generated]
 [atomist-skill:atomist/docker-base-image-policy]

Signed-off-by: Atomist Bot <bot@atomist.com>
---
 sample-docker-templates/react/Dockerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/sample-docker-templates/react/Dockerfile b/sample-docker-templates/react/Dockerfile
index a9a26a58eb..5c24fb95d1 100644
--- a/sample-docker-templates/react/Dockerfile
+++ b/sample-docker-templates/react/Dockerfile
@@ -20,7 +20,7 @@ RUN npm run build
 ###### PRODUCTION ENVIRONMENT ######
 
 # Base Image for prod env
-FROM nginx:stable-alpine
+FROM nginx:stable-alpine@sha256:2366ede62d2e26a20f7ce7d0294694fe52b166107fd346894e4658dfb5273f9c
 
 # Adding the build files from previous container to nginx/html
 COPY --from=build /app/build /usr/share/nginx/html