The inbucket docker image doesn't have proper tags that match the release versions so its really hard to reliably deploy the version of inbucket you want and the docker image is built and meant to run as root. In a production scenario this is insecure and can magnify the effects of any possible vulnerabilities.

I'd really like to have a non root docker image and version based tags, thoughts?

Edit: missed that there are version based tags. they're just buried under the sha tags, my bad