Skip to content

Merge pull request #413 from ComplianceAsCode/renovate/docker-metadat… #236

Merge pull request #413 from ComplianceAsCode/renovate/docker-metadat…

Merge pull request #413 from ComplianceAsCode/renovate/docker-metadat… #236

Triggered via push July 22, 2024 21:28
Status Success
Total duration 1h 36m 59s
Artifacts 4
bundle-container-push-latest  /  container
36s
bundle-container-push-latest / container
openscap-container-push-latest  /  container
2m 14s
openscap-container-push-latest / container
operator-container-push-latest  /  container
1h 35m
operator-container-push-latest / container
bundle-container-push-latest  /  sign
6s
bundle-container-push-latest / sign
openscap-container-push-latest  /  sign
7s
openscap-container-push-latest / sign
operator-container-push-latest  /  sign
6s
operator-container-push-latest / sign
catalog-container-push-pr  /  container
1m 2s
catalog-container-push-pr / container
catalog-container-push-pr  /  sign
5s
catalog-container-push-pr / sign
Fit to window
Zoom out
Zoom in

Annotations

12 notices
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:4cbe28dfb00841851fe21d06d66dee555a81c488366c78eb2015a7d455833163 | jq '.[0]'
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:4cbe28dfb00841851fe21d06d66dee555a81c488366c78eb2015a7d455833163 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:4cbe28dfb00841851fe21d06d66dee555a81c488366c78eb2015a7d455833163 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:51c45e14bd41e030be7538abe9aebb2a2261e64129e86b25180e11965c2420be | jq '.[0]'
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:51c45e14bd41e030be7538abe9aebb2a2261e64129e86b25180e11965c2420be | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:51c45e14bd41e030be7538abe9aebb2a2261e64129e86b25180e11965c2420be | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:70884d1a637f2d1c67a2cd53fc7c67369cad01674d09acc43a1593350dc8d039 | jq '.[0]'
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:70884d1a637f2d1c67a2cd53fc7c67369cad01674d09acc43a1593350dc8d039 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:70884d1a637f2d1c67a2cd53fc7c67369cad01674d09acc43a1593350dc8d039 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:24c0668ce5fca37eafc47ba66b789f87ae594b5647382b312c5294c5438553d9 | jq '.[0]'
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:24c0668ce5fca37eafc47ba66b789f87ae594b5647382b312c5294c5438553d9 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:24c0668ce5fca37eafc47ba66b789f87ae594b5647382b312c5294c5438553d9 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text

Artifacts

Produced during runtime
Name Size
ComplianceAsCode~compliance-operator~E7GYI6.dockerbuild Expired
38.5 KB
ComplianceAsCode~compliance-operator~I37A4D.dockerbuild Expired
19.6 KB
ComplianceAsCode~compliance-operator~T0HXAZ.dockerbuild Expired
40 KB
ComplianceAsCode~compliance-operator~T8LR4Q.dockerbuild Expired
11.3 KB