Merge pull request #758 from yuumasato/master-restrict-pipelines #368
yuumasatorelease-latest.yml
on: push
bundle-container-push-latest
/
container
58s
must-gather-latest
/
container
43s
openscap-container-push-latest
/
container
2m 13s
operator-container-push-latest
/
container
3h 13m
must-gather-latest
/
sign
10s
openscap-container-push-latest
/
sign
10s
catalog-container-push-pr
/
sign
16s
Annotations
1 warning and 15 notices
|
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals:
images/must-gather/Dockerfile.ocp#L6
JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals
More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:2765399c4e86d75825b2f229a363033ad297196cae8db608cf202851af7bc273 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:2765399c4e86d75825b2f229a363033ad297196cae8db608cf202851af7bc273 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:2765399c4e86d75825b2f229a363033ad297196cae8db608cf202851af7bc273 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:b5e5b8512ead401dc6eabb29b87e43b45324c83d1c8178804c50527855ab8a78 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:b5e5b8512ead401dc6eabb29b87e43b45324c83d1c8178804c50527855ab8a78 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:b5e5b8512ead401dc6eabb29b87e43b45324c83d1c8178804c50527855ab8a78 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:9d2dd136dceb835e17690ea71f8c5a00a84a980d0637790b82335ac8a791136d | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:9d2dd136dceb835e17690ea71f8c5a00a84a980d0637790b82335ac8a791136d | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:9d2dd136dceb835e17690ea71f8c5a00a84a980d0637790b82335ac8a791136d | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:58abdf2090b5bd46368be650651156162cd1e120bc80cb6ca233cae684ea9a22 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:58abdf2090b5bd46368be650651156162cd1e120bc80cb6ca233cae684ea9a22 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:58abdf2090b5bd46368be650651156162cd1e120bc80cb6ca233cae684ea9a22 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:cb0e7ac9847d76b9bc6c6d5ba7176c5b6aac80d84203c31c539a1e496bf43ea1 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:cb0e7ac9847d76b9bc6c6d5ba7176c5b6aac80d84203c31c539a1e496bf43ea1 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:cb0e7ac9847d76b9bc6c6d5ba7176c5b6aac80d84203c31c539a1e496bf43ea1 | jq '.[0]'
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
ComplianceAsCode~compliance-operator~2Q3EIJ.dockerbuild
Expired
|
115 KB |
sha256:38b5c28e1804780de8135db3cd75625b076690c0d2bd31613a9b5b0fcf529cad
|
|
|
ComplianceAsCode~compliance-operator~KFCEI6.dockerbuild
Expired
|
103 KB |
sha256:bd074f10806c8d63e3dff72b099ee669e2d0ea27458f8979a6264e1a378f498d
|
|
|
ComplianceAsCode~compliance-operator~L38G97.dockerbuild
Expired
|
40.9 KB |
sha256:14f2666fef47edf4ed6139b28a42d78a0a6aa120d0f17de491d547d9219f81ad
|
|
|
ComplianceAsCode~compliance-operator~PJA3M2.dockerbuild
Expired
|
61.2 KB |
sha256:20e267ec0b7702b5918b6061fb49e943e7279f83db74c57ee8571bc1233db587
|
|
|
ComplianceAsCode~compliance-operator~XQSEHB.dockerbuild
Expired
|
136 KB |
sha256:7bfcfac9c001e5d107b096dec3d276ff00b7b1c84b3121d5f9ab5bdc8e1e5d98
|
|