Merge pull request #803 from Vincent056/opensc_fix #371
yuumasatorelease-latest.yml
on: push
bundle-container-push-latest
/
container
47s
must-gather-latest
/
container
58s
openscap-container-push-latest
/
container
1m 59s
operator-container-push-latest
/
container
3h 15m
must-gather-latest
/
sign
11s
openscap-container-push-latest
/
sign
8s
catalog-container-push-pr
/
sign
11s
Annotations
1 warning and 15 notices
|
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals:
images/must-gather/Dockerfile.ocp#L6
JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals
More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:1c3a51e766dc1086dd50b14dc96a598f6551383fb199b360f5a1ef7097522ed3 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:1c3a51e766dc1086dd50b14dc96a598f6551383fb199b360f5a1ef7097522ed3 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:1c3a51e766dc1086dd50b14dc96a598f6551383fb199b360f5a1ef7097522ed3 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:cd2132dc673adb2a681c7147240890fd13047fd6242452b7cf90195de7bc9e20 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:cd2132dc673adb2a681c7147240890fd13047fd6242452b7cf90195de7bc9e20 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:cd2132dc673adb2a681c7147240890fd13047fd6242452b7cf90195de7bc9e20 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:77db50f6ed4b0a9ece6a8badecca6a55904bbd57756b670492bb774b2101d9fd | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:77db50f6ed4b0a9ece6a8badecca6a55904bbd57756b670492bb774b2101d9fd | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:77db50f6ed4b0a9ece6a8badecca6a55904bbd57756b670492bb774b2101d9fd | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:18e0564ee20ae27dad5e13a4718a324b3b20a0abe7dbe1dc0f15d082cec219ad | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:18e0564ee20ae27dad5e13a4718a324b3b20a0abe7dbe1dc0f15d082cec219ad | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:18e0564ee20ae27dad5e13a4718a324b3b20a0abe7dbe1dc0f15d082cec219ad | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:5ce98c4631008b72d0d0296ac4dddb8b253a81641ca7d80bf795201ef95ea417 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:5ce98c4631008b72d0d0296ac4dddb8b253a81641ca7d80bf795201ef95ea417 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:5ce98c4631008b72d0d0296ac4dddb8b253a81641ca7d80bf795201ef95ea417 | jq '.[0]'
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
ComplianceAsCode~compliance-operator~M3YD3B.dockerbuild
Expired
|
114 KB |
sha256:008f229c5fa18fe114d2eb3d4b148229fa1be5ee380c6920481a7b1aaf8b6b7d
|
|
|
ComplianceAsCode~compliance-operator~P13DUK.dockerbuild
Expired
|
104 KB |
sha256:042b60d8093ed10b858227437ae15fa778988974c25c7b5197b5bc3273ee54b4
|
|
|
ComplianceAsCode~compliance-operator~QUR89H.dockerbuild
Expired
|
55.1 KB |
sha256:895b171de284905af3a9616c8430023d96773127176133f77380988a8d7b91b5
|
|
|
ComplianceAsCode~compliance-operator~W8Q6HT.dockerbuild
Expired
|
136 KB |
sha256:dc8ae33c70352035aba15bcadc5431b222eead7d1818308614f63493a78e370b
|
|
|
ComplianceAsCode~compliance-operator~Z1M19W.dockerbuild
Expired
|
42.8 KB |
sha256:2f3384d52bd74a79499abe2c17a7aa482f3c7784d8799a249ee9b4b3beb6e0c0
|
|