Merge pull request #586 from ComplianceAsCode/renovate/github.com-ons… #268
release-latest.yml
on: push
bundle-container-push-latest
/
container
27s
must-gather-latest
/
container
41s
openscap-container-push-latest
/
container
1m 46s
operator-container-push-latest
/
container
1h 32m
must-gather-latest
/
sign
7s
openscap-container-push-latest
/
sign
10s
catalog-container-push-pr
/
sign
11s
Annotations
1 warning and 15 notices
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:ec7419a488090deae7132a9ea40d3e8514b503142ad70ddf3ccefadb30e5f4c6 | jq '.[0]'
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:ec7419a488090deae7132a9ea40d3e8514b503142ad70ddf3ccefadb30e5f4c6 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:ec7419a488090deae7132a9ea40d3e8514b503142ad70ddf3ccefadb30e5f4c6 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:5c0baa75c81be3049866e84b3a580a401eab213608992e419d46f9ce3e724bbd | jq '.[0]'
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:5c0baa75c81be3049866e84b3a580a401eab213608992e419d46f9ce3e724bbd | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:5c0baa75c81be3049866e84b3a580a401eab213608992e419d46f9ce3e724bbd | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:d500eb66047dd97248ee05773b85e889d8dc1f24c966e5abcd2a0d2528c53cd7 | jq '.[0]'
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:d500eb66047dd97248ee05773b85e889d8dc1f24c966e5abcd2a0d2528c53cd7 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:d500eb66047dd97248ee05773b85e889d8dc1f24c966e5abcd2a0d2528c53cd7 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:3a966ed58b17a754d8e104d100aeb6daae19322d578c5c8293dd6da49826aeed | jq '.[0]'
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:3a966ed58b17a754d8e104d100aeb6daae19322d578c5c8293dd6da49826aeed | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:3a966ed58b17a754d8e104d100aeb6daae19322d578c5c8293dd6da49826aeed | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:2032255342d2e70ebf91099d927b23af6615b6f9d711a810a2b408dd9349658d | jq '.[0]'
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:2032255342d2e70ebf91099d927b23af6615b6f9d711a810a2b408dd9349658d | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:2032255342d2e70ebf91099d927b23af6615b6f9d711a810a2b408dd9349658d | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals:
images/must-gather/Dockerfile.ocp#L6
JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals
More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
|
Artifacts
Produced during runtime
Name | Size | |
---|---|---|
ComplianceAsCode~compliance-operator~73L3OG.dockerbuild
|
39.6 KB |
|
ComplianceAsCode~compliance-operator~CXH2HC.dockerbuild
|
14.8 KB |
|
ComplianceAsCode~compliance-operator~FMK49Q.dockerbuild
|
23.2 KB |
|
ComplianceAsCode~compliance-operator~IF5TIO.dockerbuild
|
38.9 KB |
|
ComplianceAsCode~compliance-operator~VUK661.dockerbuild
|
8.64 KB |
|