Merge pull request #584 from ComplianceAsCode/renovate/docker-build-p… #273
openshift-merge-bot[bot]release-latest.yml
on: push
bundle-container-push-latest
/
container
29s
must-gather-latest
/
container
56s
openscap-container-push-latest
/
container
1m 28s
operator-container-push-latest
/
container
1h 33m
must-gather-latest
/
sign
7s
openscap-container-push-latest
/
sign
7s
catalog-container-push-pr
/
sign
5s
Annotations
1 warning and 15 notices
|
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals:
images/must-gather/Dockerfile.ocp#L6
JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals
More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:65b73c6aacb983be692cc4749ab581bc8f4ea25e10c8816f773b90e86c960038 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:65b73c6aacb983be692cc4749ab581bc8f4ea25e10c8816f773b90e86c960038 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:65b73c6aacb983be692cc4749ab581bc8f4ea25e10c8816f773b90e86c960038 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:43063d57e8026733355bfb0cb4611e45534b20c83dbe54bc12fbdf1607340d76 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:43063d57e8026733355bfb0cb4611e45534b20c83dbe54bc12fbdf1607340d76 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:43063d57e8026733355bfb0cb4611e45534b20c83dbe54bc12fbdf1607340d76 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:b94853f983f2a452904baa52eca4d326493cd877404a504ec8aaf600d795ef9f | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:b94853f983f2a452904baa52eca4d326493cd877404a504ec8aaf600d795ef9f | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:b94853f983f2a452904baa52eca4d326493cd877404a504ec8aaf600d795ef9f | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:b3945c16cb9aafeb15bc21e38bf6a0376a0125fabf12a3c3f00c08b1021dc942 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:b3945c16cb9aafeb15bc21e38bf6a0376a0125fabf12a3c3f00c08b1021dc942 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:b3945c16cb9aafeb15bc21e38bf6a0376a0125fabf12a3c3f00c08b1021dc942 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:81b394413e34c22d9cce965521ddc2f7ae038a555129180e7ec566e009d42788 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:81b394413e34c22d9cce965521ddc2f7ae038a555129180e7ec566e009d42788 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:81b394413e34c22d9cce965521ddc2f7ae038a555129180e7ec566e009d42788 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
ComplianceAsCode~compliance-operator~HQTE4E.dockerbuild
|
47.3 KB |
|
|
ComplianceAsCode~compliance-operator~IDJMZG.dockerbuild
|
20.7 KB |
|
|
ComplianceAsCode~compliance-operator~IHDEY0.dockerbuild
|
8.6 KB |
|
|
ComplianceAsCode~compliance-operator~K89NX3.dockerbuild
|
39.2 KB |
|
|
ComplianceAsCode~compliance-operator~YQF233.dockerbuild
|
37.6 KB |
|