Merge pull request #725 from yuumasato/migrate-co-pipelintes-to-new-c… #354
rhmdndrelease-latest.yml
on: push
bundle-container-push-latest
/
container
37s
must-gather-latest
/
container
52s
openscap-container-push-latest
/
container
2m 13s
operator-container-push-latest
/
container
2h 55m
must-gather-latest
/
sign
8s
openscap-container-push-latest
/
sign
6s
catalog-container-push-pr
/
sign
8s
Annotations
1 warning and 15 notices
|
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals:
images/must-gather/Dockerfile.ocp#L6
JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals
More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:9a0d5c0e9ac9ddab032ea4e47b808fb1aa9c9a6a035a618530ad0e0e260dd801 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:9a0d5c0e9ac9ddab032ea4e47b808fb1aa9c9a6a035a618530ad0e0e260dd801 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:9a0d5c0e9ac9ddab032ea4e47b808fb1aa9c9a6a035a618530ad0e0e260dd801 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:bc538ec9d6422fcc964635b87d4d9c7e55e9e5ff2cac4ad844bc9f719920c1aa | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:bc538ec9d6422fcc964635b87d4d9c7e55e9e5ff2cac4ad844bc9f719920c1aa | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:bc538ec9d6422fcc964635b87d4d9c7e55e9e5ff2cac4ad844bc9f719920c1aa | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:ebdde354e05a07bb3c4c22acb4b68f6567ecec2ced8ebb5e314afd24b91802b7 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:ebdde354e05a07bb3c4c22acb4b68f6567ecec2ced8ebb5e314afd24b91802b7 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:ebdde354e05a07bb3c4c22acb4b68f6567ecec2ced8ebb5e314afd24b91802b7 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:1c4302916494e28e248c1df4c8470a69436fde44b6c0fed1f093ac6278b67ac7 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:1c4302916494e28e248c1df4c8470a69436fde44b6c0fed1f093ac6278b67ac7 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:1c4302916494e28e248c1df4c8470a69436fde44b6c0fed1f093ac6278b67ac7 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:67f74340b2490efc244d2981355ae7b1237ffe41383f1b9b407f5b8961bbd4c5 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:67f74340b2490efc244d2981355ae7b1237ffe41383f1b9b407f5b8961bbd4c5 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:67f74340b2490efc244d2981355ae7b1237ffe41383f1b9b407f5b8961bbd4c5 | jq '.[0]'
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
ComplianceAsCode~compliance-operator~3L7S0Z.dockerbuild
Expired
|
107 KB |
sha256:f05d18cfaaeedd362054f80a7ffcd0e8910ec102db337418425198217dcbe622
|
|
|
ComplianceAsCode~compliance-operator~7FLUDZ.dockerbuild
Expired
|
41 KB |
sha256:9934a7e898fccbe55c35bb0cb8e14f338972e846954320a89529fc0d149f66ba
|
|
|
ComplianceAsCode~compliance-operator~7LYC45.dockerbuild
Expired
|
50.4 KB |
sha256:8c399fdfa72c05bd534a131d72455395b31c290ab8186d97bcb5b9d33a665078
|
|
|
ComplianceAsCode~compliance-operator~FMCLU6.dockerbuild
Expired
|
98 KB |
sha256:3877911be304e2c90a6960772d1611fef9a8c8ef4a20365518976296d5aa991a
|
|
|
ComplianceAsCode~compliance-operator~QN1EQZ.dockerbuild
Expired
|
135 KB |
sha256:93129af013747949e36e988d1f0658216251da0c972d42c822bfd98aed7c4d9a
|
|