Image mutation detection identifies unauthorized or unexpected changes to a container image after its initial build and signing. It monitors for modifications to layers, filesystem contents, configuration, or metadata that occur during storage, distribution, or runtime. In secure supply chains, it acts as a control that ensures deployed artifacts remain identical to what was originally built and verified.
How It Works
Container images are composed of immutable layers, configuration objects, and metadata stored in registries. Mutation detection establishes a cryptographic baseline at build time, typically using content-addressable digests and signed attestations. These digests uniquely represent the exact byte-level state of the image and its layers.
During registry storage, replication, or deployment, the system continuously or periodically recalculates and compares digests against the original trusted reference. Any deviationโsuch as a modified layer tarball, altered environment variables, or changed entrypoint configurationโproduces a mismatch. Advanced implementations also validate signatures, SBOMs, and provenance attestations to ensure both integrity and authenticity.
Chainguard integrates this capability across the image lifecycle. It verifies images at build, registry, and runtime stages, detecting drift introduced by compromised registries, insider tampering, or misconfigured tooling. Alerts or policy enforcement mechanisms can block mutated images from promotion or execution in Kubernetes clusters.
Why It Matters
Container registries and CI/CD pipelines are high-value attack surfaces. If an attacker alters an image after it passes security scanning, traditional controls may not detect the change. Mutation detection closes this gap by enforcing immutability beyond build time.
For platform teams, this reduces supply chain risk, strengthens compliance posture, and supports zero-trust principles. It ensures that what runs in production is exactly what security teams reviewed and approved, preventing silent drift across environments.
Key Takeaway
Image mutation detection preserves artifact integrity by continuously verifying that deployed container images remain byte-for-byte identical to their trusted build state.