Merge pull request #774 from yuumasato/fix-openscap-image-build #363
yuumasatorelease-latest.yml
on: push
bundle-container-push-latest
/
container
1m 3s
must-gather-latest
/
container
1m 4s
openscap-container-push-latest
/
container
2m 24s
operator-container-push-latest
/
container
3h 5m
must-gather-latest
/
sign
7s
openscap-container-push-latest
/
sign
10s
catalog-container-push-pr
/
sign
8s
Annotations
1 warning and 15 notices
|
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals:
images/must-gather/Dockerfile.ocp#L6
JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals
More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:88b0048ac2f746a8959837900cf983b17f4712f661c766cc04bfad96aaa2e3d8 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:88b0048ac2f746a8959837900cf983b17f4712f661c766cc04bfad96aaa2e3d8 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:88b0048ac2f746a8959837900cf983b17f4712f661c766cc04bfad96aaa2e3d8 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:36082f7f2c7550ae9a31af051c80e512825fef4286bd39b4b16cc035bb554b29 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:36082f7f2c7550ae9a31af051c80e512825fef4286bd39b4b16cc035bb554b29 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:36082f7f2c7550ae9a31af051c80e512825fef4286bd39b4b16cc035bb554b29 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:135a99321fbdaca984ed80ffc3a1e1a1ff4e9b1095d6a6f36145ed919c9b82cb | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:135a99321fbdaca984ed80ffc3a1e1a1ff4e9b1095d6a6f36145ed919c9b82cb | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:135a99321fbdaca984ed80ffc3a1e1a1ff4e9b1095d6a6f36145ed919c9b82cb | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:e0b3f0d20b588c0931de6ce2bb8679e9f825d1402ceb42c0dfbe640151b0e819 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:e0b3f0d20b588c0931de6ce2bb8679e9f825d1402ceb42c0dfbe640151b0e819 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:e0b3f0d20b588c0931de6ce2bb8679e9f825d1402ceb42c0dfbe640151b0e819 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:7faff5523398a986aa8c67cdb3cb3e9b87406657d6cd7f1133ade7b3416a49f0 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:7faff5523398a986aa8c67cdb3cb3e9b87406657d6cd7f1133ade7b3416a49f0 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:7faff5523398a986aa8c67cdb3cb3e9b87406657d6cd7f1133ade7b3416a49f0 | jq '.[0]'
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
ComplianceAsCode~compliance-operator~QOKPLV.dockerbuild
Expired
|
107 KB |
sha256:5ad303ab5128f15eee475aea9fa0806daa03efa7ad2d139ab11d05436e3504f6
|
|
|
ComplianceAsCode~compliance-operator~TMR1MP.dockerbuild
Expired
|
59.7 KB |
sha256:3a70167183f7b468c8196f9da2bde11b3ff8690b4e4f58f0f4a65f8967d89145
|
|
|
ComplianceAsCode~compliance-operator~V8GDMV.dockerbuild
Expired
|
135 KB |
sha256:8b3ce868fbea34763d5229479bd92e7e1b4c60e16e5618fc231c17d474131b5f
|
|
|
ComplianceAsCode~compliance-operator~VLISV6.dockerbuild
Expired
|
107 KB |
sha256:6db9bff713237b301722f5861d5f3ee89aec832302ea10bd9ab4fedbf9a6c8de
|
|
|
ComplianceAsCode~compliance-operator~Y28M8W.dockerbuild
Expired
|
43.1 KB |
sha256:a2b50bacd38b802eabf1e2c456110f6267df5ee466833be6e4ac0f99975947d9
|
|