Merge pull request #802 from ComplianceAsCode/konflux-compliance-oper… #375
yuumasatorelease-latest.yml
on: push
bundle-container-push-latest
/
container
42s
must-gather-latest
/
container
1m 0s
openscap-container-push-latest
/
container
2m 16s
operator-container-push-latest
/
container
3h 8m
must-gather-latest
/
sign
16s
openscap-container-push-latest
/
sign
13s
catalog-container-push-pr
/
sign
12s
Annotations
1 warning and 15 notices
|
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals:
images/must-gather/Dockerfile.ocp#L6
JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals
More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:4d071cf1a59c31c0d562e2b073cf97fc5111d742325058d3705142a9eef2e305 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:4d071cf1a59c31c0d562e2b073cf97fc5111d742325058d3705142a9eef2e305 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:4d071cf1a59c31c0d562e2b073cf97fc5111d742325058d3705142a9eef2e305 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:4542302c5cb80712c0c950c4969441a34c8bd711b480d943b6423d170c9e2ed5 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:4542302c5cb80712c0c950c4969441a34c8bd711b480d943b6423d170c9e2ed5 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:4542302c5cb80712c0c950c4969441a34c8bd711b480d943b6423d170c9e2ed5 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:a8dadd27470647c353c6af0b9c0927137464ae9996422e94796c42916ddd8d31 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:a8dadd27470647c353c6af0b9c0927137464ae9996422e94796c42916ddd8d31 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:a8dadd27470647c353c6af0b9c0927137464ae9996422e94796c42916ddd8d31 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:9e91aa4e3382c2fadde19a63dc8aa1e8680d9445809a07db5c8da532f1bc8c31 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:9e91aa4e3382c2fadde19a63dc8aa1e8680d9445809a07db5c8da532f1bc8c31 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:9e91aa4e3382c2fadde19a63dc8aa1e8680d9445809a07db5c8da532f1bc8c31 | jq '.[0]'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:ab2cbefa05d5b3e2d5a9799a0d7007b303593169360946cf3a1cf32afa865761 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:ab2cbefa05d5b3e2d5a9799a0d7007b303593169360946cf3a1cf32afa865761 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:ab2cbefa05d5b3e2d5a9799a0d7007b303593169360946cf3a1cf32afa865761 | jq '.[0]'
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
ComplianceAsCode~compliance-operator~EAJ0ZI.dockerbuild
Expired
|
53.1 KB |
sha256:3a44a61ae5f770e4116b8df9cf27cb96e79bf0a3c03aa501e68cf6a8ab3751ac
|
|
|
ComplianceAsCode~compliance-operator~EUVPSA.dockerbuild
Expired
|
135 KB |
sha256:cbf3373199b491682d2e311e9a8c5aff2fbce5d860945b04500a97a7e29cddf5
|
|
|
ComplianceAsCode~compliance-operator~GIY5MV.dockerbuild
Expired
|
104 KB |
sha256:0564cbb66a84984cecee00c7d163e7a39c530206bd9edc44be7617d1e21be037
|
|
|
ComplianceAsCode~compliance-operator~IBT4B6.dockerbuild
Expired
|
43.2 KB |
sha256:2c35e76161254e7a7b270cf3a16908ce08876667ad3de70a9e12eb94d23e2f88
|
|
|
ComplianceAsCode~compliance-operator~UXKUBY.dockerbuild
Expired
|
110 KB |
sha256:e5c2d9f79ae96b72ddc802df04f9c477187650d90436e90afbb8c87da1603472
|
|