fix: Sign bundles when publishing from archives

The code flow for publishing from archives is different from publishing from a porter bundle definition. This resulted in signing never happened when publishing from an archive. This change introduces the signing when publishing from archives too. Signed-off-by: Kim Christensen <[email protected]>
kichristensen · Aug 11, 2024 · 277cd62 · 277cd62
1 parent ddf7d68
commit 277cd62
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/pkg/porter/install.go b/pkg/porter/install.go
@@ -109,6 +109,9 @@ func (p *Porter) InstallBundle(ctx context.Context, opts InstallOptions) error {
 		}
 
 		invocationImage := bun.Definition.InvocationImages[0].Image
+		if relocInvImage, ok := bun.RelocationMap[invocationImage]; ok {
+			invocationImage = relocInvImage
+		}
 		log.Debugf("verifying invocation image signature for %s", invocationImage)
 		err = p.Signer.Verify(ctx, invocationImage)
 		if err != nil {