Merge pull request #609 from prb112/patch-1 #283
rhmdndrelease-latest.yml
on: push
bundle-container-push-latest
/
container
35s
must-gather-latest
/
container
37s
openscap-container-push-latest
/
container
1m 25s
operator-container-push-latest
/
container
1h 39m
must-gather-latest
/
sign
10s
openscap-container-push-latest
/
sign
10s
catalog-container-push-pr
/
sign
7s
Annotations
1 warning and 15 notices
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:6e4e3e07d8daf5c330478876df11d79bac7fbdcf23b454494c32d28344978495 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:6e4e3e07d8daf5c330478876df11d79bac7fbdcf23b454494c32d28344978495 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:6e4e3e07d8daf5c330478876df11d79bac7fbdcf23b454494c32d28344978495 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:28aa95974e0a7a5ab6786a76d42276cece6f92d4d7226188ad10b3dc0dc7c3bd | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:28aa95974e0a7a5ab6786a76d42276cece6f92d4d7226188ad10b3dc0dc7c3bd | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:28aa95974e0a7a5ab6786a76d42276cece6f92d4d7226188ad10b3dc0dc7c3bd | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:78bcb892ffd121ff46a0faef1569be8efc32181dd60d8b21c687f670ff5ad815 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:78bcb892ffd121ff46a0faef1569be8efc32181dd60d8b21c687f670ff5ad815 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:78bcb892ffd121ff46a0faef1569be8efc32181dd60d8b21c687f670ff5ad815 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:f7f893c403909d859ee061f0865c6a327166dab1e4752381442413a82517f13f | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:f7f893c403909d859ee061f0865c6a327166dab1e4752381442413a82517f13f | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:f7f893c403909d859ee061f0865c6a327166dab1e4752381442413a82517f13f | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:c9692910e7caacb986c1925c8a91c33e80a5d0c401f7f9601d6ece1025ac68ca | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:c9692910e7caacb986c1925c8a91c33e80a5d0c401f7f9601d6ece1025ac68ca | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:c9692910e7caacb986c1925c8a91c33e80a5d0c401f7f9601d6ece1025ac68ca | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals:
images/must-gather/Dockerfile.ocp#L6
JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals
More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
ComplianceAsCode~compliance-operator~FM9N74.dockerbuild
|
19.9 KB |
|
|
ComplianceAsCode~compliance-operator~K6Q17A.dockerbuild
|
8.69 KB |
|
|
ComplianceAsCode~compliance-operator~NETXKZ.dockerbuild
|
37 KB |
|
|
ComplianceAsCode~compliance-operator~WDJ273.dockerbuild
|
40 KB |
|
|
ComplianceAsCode~compliance-operator~WKXJL5.dockerbuild
|
11.3 KB |
|