This week we introduced an important feature to SUSE Gallery — the appliance security summary. It is displayed for every published appliance and is designed to help you better understand what the appliance contains. This is useful for security reasons as you can easily see if the appliance contains any sources where undesirable code might slip in. It also provides a quick overview of the appliance’s contents.
The security summary will tell you if the appliance contains:
- unofficial software sources (repositories)
- custom software packages
- overlay files (especially executable ones)
- custom scripts that run after boot
Of course, the presence of any of these does not mean that the appliance is unsafe — many regular and completely safe appliances will have some yellow warning icons displayed in the summary. But it gives you some hints and more control. If you ever encounter any unsafe appliance, simply report it. We will take it down immediately and flag the appliance creator’s account accordingly.