# Docker apt-get Missing Cache Cleanup

- ID: docker-apt-missing-cache-cleanup
- Severity: LOW
- CWE: CWE-1395 (CWE-1395)
- Languages: Dockerfile
- Frameworks: docker

## Description

Detects apt-get commands without cache cleanup in the same RUN layer.

## Detection Message

apt-get without cache cleanup increases image size

## Remediation

Clean up apt cache in the same RUN command.

```dockerfile
RUN apt-get update && \
    apt-get install -y --no-install-recommends curl && \
    rm -rf /var/lib/apt/lists/*
```

Learn more: https://shoulder.dev/learn/docker/cwe-1395/apt-cache-cleanup

## Documentation

[object Object]

## Related Rules

- **Docker apt-get Missing --no-install-recommends** [LOW]: 
- **Docker apt-get Missing -y Flag** [LOW]: