Merge pull request #592 from ComplianceAsCode/commit-sha #270
Vincent056release-latest.yml
on: push
bundle-container-push-latest
/
container
34s
must-gather-latest
/
container
46s
openscap-container-push-latest
/
container
1m 26s
operator-container-push-latest
/
container
1h 32m
must-gather-latest
/
sign
7s
openscap-container-push-latest
/
sign
7s
catalog-container-push-pr
/
sign
10s
Annotations
1 warning and 15 notices
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:433e0ed334001180ebe2cfa9d85922fc5cf57b1c8d2f6ef133957a059502b0b9 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:433e0ed334001180ebe2cfa9d85922fc5cf57b1c8d2f6ef133957a059502b0b9 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:433e0ed334001180ebe2cfa9d85922fc5cf57b1c8d2f6ef133957a059502b0b9 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:1779e98e2cd511f68bdeef2639e3a1df8f2f077f22b2ccadca24b2dece3393e5 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:1779e98e2cd511f68bdeef2639e3a1df8f2f077f22b2ccadca24b2dece3393e5 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:1779e98e2cd511f68bdeef2639e3a1df8f2f077f22b2ccadca24b2dece3393e5 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:38adeaca9b707c2a5fcdb16c8fd6a14b39f0cf89bc1793ec934d2b6f0a20f2e8 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:38adeaca9b707c2a5fcdb16c8fd6a14b39f0cf89bc1793ec934d2b6f0a20f2e8 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:38adeaca9b707c2a5fcdb16c8fd6a14b39f0cf89bc1793ec934d2b6f0a20f2e8 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:4dccbee7333c7e9881e2c81755c9b0c2b1450c9c462ec11aa927e62ec282d9f3 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:4dccbee7333c7e9881e2c81755c9b0c2b1450c9c462ec11aa927e62ec282d9f3 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:4dccbee7333c7e9881e2c81755c9b0c2b1450c9c462ec11aa927e62ec282d9f3 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:be0fb8da733d6be23e5ee27be5a24a19490b61dd3ff2166cdf09fb5cc7d85926 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:be0fb8da733d6be23e5ee27be5a24a19490b61dd3ff2166cdf09fb5cc7d85926 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:be0fb8da733d6be23e5ee27be5a24a19490b61dd3ff2166cdf09fb5cc7d85926 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals:
images/must-gather/Dockerfile.ocp#L6
JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals
More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
ComplianceAsCode~compliance-operator~AVCUBI.dockerbuild
|
8.61 KB |
|
|
ComplianceAsCode~compliance-operator~FFAVZZ.dockerbuild
|
37 KB |
|
|
ComplianceAsCode~compliance-operator~VJJGE7.dockerbuild
|
14.7 KB |
|
|
ComplianceAsCode~compliance-operator~YOSXIF.dockerbuild
|
19.5 KB |
|
|
ComplianceAsCode~compliance-operator~YP7HT7.dockerbuild
|
104 KB |
|