Merge pull request #585 from ComplianceAsCode/renovate/github-codeql-… #274
openshift-merge-bot[bot]release-latest.yml
on: push
bundle-container-push-latest
/
container
24s
must-gather-latest
/
container
44s
openscap-container-push-latest
/
container
1m 20s
operator-container-push-latest
/
container
1h 35m
must-gather-latest
/
sign
10s
openscap-container-push-latest
/
sign
10s
catalog-container-push-pr
/
sign
11s
Annotations
1 warning and 15 notices
|
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals:
images/must-gather/Dockerfile.ocp#L6
JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals
More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:6cae8b7a1b8aaf76de96919debcb0b601dce9f26d4b49164fb2fa8c4a776aa99 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:6cae8b7a1b8aaf76de96919debcb0b601dce9f26d4b49164fb2fa8c4a776aa99 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:6cae8b7a1b8aaf76de96919debcb0b601dce9f26d4b49164fb2fa8c4a776aa99 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:c83fb1cfc5a5e955381dcc49e973667bf40a60e1334f2cbc6605785f90bd8b61 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:c83fb1cfc5a5e955381dcc49e973667bf40a60e1334f2cbc6605785f90bd8b61 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:c83fb1cfc5a5e955381dcc49e973667bf40a60e1334f2cbc6605785f90bd8b61 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:8eb2d4871c257f127dc2807cffe3657f38f8b1a1040235dac423d35f7a880eb0 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:8eb2d4871c257f127dc2807cffe3657f38f8b1a1040235dac423d35f7a880eb0 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:8eb2d4871c257f127dc2807cffe3657f38f8b1a1040235dac423d35f7a880eb0 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:7fb827703bd827e16c8de2317b46efb0f0cd8027482efbda1de29914de276d30 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:7fb827703bd827e16c8de2317b46efb0f0cd8027482efbda1de29914de276d30 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:7fb827703bd827e16c8de2317b46efb0f0cd8027482efbda1de29914de276d30 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:a555739f1237509a7788a1f7ee16a286431cfb4ac68fdab5936698ca8351cbf7 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:a555739f1237509a7788a1f7ee16a286431cfb4ac68fdab5936698ca8351cbf7 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:a555739f1237509a7788a1f7ee16a286431cfb4ac68fdab5936698ca8351cbf7 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
ComplianceAsCode~compliance-operator~06P48J.dockerbuild
|
19.9 KB |
|
|
ComplianceAsCode~compliance-operator~EEEC4Z.dockerbuild
|
10.9 KB |
|
|
ComplianceAsCode~compliance-operator~KI4GKZ.dockerbuild
|
39.9 KB |
|
|
ComplianceAsCode~compliance-operator~OF9W5W.dockerbuild
|
37.2 KB |
|
|
ComplianceAsCode~compliance-operator~U4ASAJ.dockerbuild
|
14.8 KB |
|