Merge pull request #719 from ComplianceAsCode/OCPBUGS-50924 #353
rhmdndrelease-latest.yml
on: push
bundle-container-push-latest
/
container
1m 13s
must-gather-latest
/
container
52s
openscap-container-push-latest
/
container
1m 58s
operator-container-push-latest
/
container
3h 1m
must-gather-latest
/
sign
19s
openscap-container-push-latest
/
sign
7s
catalog-container-push-pr
/
sign
7s
Annotations
1 warning and 15 notices
|
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals:
images/must-gather/Dockerfile.ocp#L6
JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals
More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:3bf8604ab26ae905369c6461a1509925df1739f0f4cbd1a7037ee788cbe33447 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:3bf8604ab26ae905369c6461a1509925df1739f0f4cbd1a7037ee788cbe33447 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:3bf8604ab26ae905369c6461a1509925df1739f0f4cbd1a7037ee788cbe33447 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:870b967b07d4d439260adb4450c6a9da7943ba8db87a7402f7a10db7a41cedfa | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:870b967b07d4d439260adb4450c6a9da7943ba8db87a7402f7a10db7a41cedfa | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:870b967b07d4d439260adb4450c6a9da7943ba8db87a7402f7a10db7a41cedfa | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:21aaf1fdc8193684d360c48a09fa3cd790020a09f8f09348295fe64487305122 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:21aaf1fdc8193684d360c48a09fa3cd790020a09f8f09348295fe64487305122 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:21aaf1fdc8193684d360c48a09fa3cd790020a09f8f09348295fe64487305122 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:76b54d6e36f0bfcaf79c223d66ec1346d1230f0177c39682ed98e73b81b2f78b | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:76b54d6e36f0bfcaf79c223d66ec1346d1230f0177c39682ed98e73b81b2f78b | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:76b54d6e36f0bfcaf79c223d66ec1346d1230f0177c39682ed98e73b81b2f78b | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:a5f38454083f6fb703a5c87c52f4b4b56c1ea6846de6c5ec8a570ec8b1bdfe82 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:a5f38454083f6fb703a5c87c52f4b4b56c1ea6846de6c5ec8a570ec8b1bdfe82 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:a5f38454083f6fb703a5c87c52f4b4b56c1ea6846de6c5ec8a570ec8b1bdfe82 | jq '.[0]'
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
ComplianceAsCode~compliance-operator~7MOX23.dockerbuild
Expired
|
103 KB |
sha256:a9513390eb3e2c749af6d0f9bb6b50c1ae7e16f087b976031bae4c27c0b4f114
|
|
|
ComplianceAsCode~compliance-operator~K423II.dockerbuild
Expired
|
107 KB |
sha256:d2a02467e1bef5bf9831fed363c442c23138741cffb98df676d18adf0b9ac01b
|
|
|
ComplianceAsCode~compliance-operator~OP4DEE.dockerbuild
Expired
|
41.2 KB |
sha256:483694c3ad4933a21492eadaee70c48e6e9ba2153540511cedcf25c983528103
|
|
|
ComplianceAsCode~compliance-operator~R9J0PX.dockerbuild
Expired
|
135 KB |
sha256:084595bcd98c1e78046e5271300421a0a1ec7e952e174fa649046347bc3b1eb5
|
|
|
ComplianceAsCode~compliance-operator~YTWWU6.dockerbuild
Expired
|
61.3 KB |
sha256:8a515fcc889cb5c084e47c4d89f3c3dbc4e4708aee2e4c0df38d036d40e2e73a
|
|