Merge pull request #600 from rhmdnd/fix-bundle-tests-action #280
release-latest.yml
on: push
bundle-container-push-latest
/
container
26s
must-gather-latest
/
container
46s
openscap-container-push-latest
/
container
1m 27s
operator-container-push-latest
/
container
1h 40m
must-gather-latest
/
sign
7s
openscap-container-push-latest
/
sign
7s
catalog-container-push-pr
/
sign
6s
Annotations
1 warning and 15 notices
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:582cd2256847d5fd309b17496e9291a07c59816a276e134402cb7858da143c29 | jq '.[0]'
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:582cd2256847d5fd309b17496e9291a07c59816a276e134402cb7858da143c29 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:582cd2256847d5fd309b17496e9291a07c59816a276e134402cb7858da143c29 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:951299784eadf83e841f37610eedaf5907eec7a4a5599efce27ec5fd2e69a739 | jq '.[0]'
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:951299784eadf83e841f37610eedaf5907eec7a4a5599efce27ec5fd2e69a739 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:951299784eadf83e841f37610eedaf5907eec7a4a5599efce27ec5fd2e69a739 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:c727f0c47e115e38c8d1d3b315031b3131d30b6cdc7575fecd1f105ca9525ed7 | jq '.[0]'
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:c727f0c47e115e38c8d1d3b315031b3131d30b6cdc7575fecd1f105ca9525ed7 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:c727f0c47e115e38c8d1d3b315031b3131d30b6cdc7575fecd1f105ca9525ed7 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:900490844cdb43e458d64cf2c1744f6da5cdd16905045b5ffe7ff1035e0c3aa2 | jq '.[0]'
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:900490844cdb43e458d64cf2c1744f6da5cdd16905045b5ffe7ff1035e0c3aa2 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:900490844cdb43e458d64cf2c1744f6da5cdd16905045b5ffe7ff1035e0c3aa2 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:78646560d2bbd2a75c01c9dec27e6c7f2d8c28d62b9fb52982c40efdb3fe6cc9 | jq '.[0]'
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:78646560d2bbd2a75c01c9dec27e6c7f2d8c28d62b9fb52982c40efdb3fe6cc9 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:78646560d2bbd2a75c01c9dec27e6c7f2d8c28d62b9fb52982c40efdb3fe6cc9 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals:
images/must-gather/Dockerfile.ocp#L6
JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals
More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
|
Artifacts
Produced during runtime
Name | Size | |
---|---|---|
ComplianceAsCode~compliance-operator~E35N70.dockerbuild
|
37.3 KB |
|
ComplianceAsCode~compliance-operator~MV2NIU.dockerbuild
|
15.1 KB |
|
ComplianceAsCode~compliance-operator~P31PHC.dockerbuild
|
24.9 KB |
|
ComplianceAsCode~compliance-operator~PWC0JX.dockerbuild
|
8.65 KB |
|
ComplianceAsCode~compliance-operator~S444AS.dockerbuild
|
39.6 KB |
|