Release PR image #849
Triggered via workflow run
January 9, 2025 21:10
renovate[bot]
renovate[bot]
completed
769f01e
Status
Success
Total duration
7m 7s
Artifacts
4
release-pr.yml
on: workflow_run
Annotations
10 warnings and 12 notices
|
Get PR number
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
openscap-container-push-pr / container
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
openscap-container-push-pr / sign
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
bundle-container-push-pr / container
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
bundle-container-push-pr / sign
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
operator-container-push-pr / container
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
operator-container-push-pr / sign
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
catalog-container-push-pr / container
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
catalog-container-push-pr / sign
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
Comment on the PR
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:a46d76c7f59cc7904b239b39b4c90e27dba823bd44f5255a1bd3a7bd85941fe5 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:a46d76c7f59cc7904b239b39b4c90e27dba823bd44f5255a1bd3a7bd85941fe5 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:a46d76c7f59cc7904b239b39b4c90e27dba823bd44f5255a1bd3a7bd85941fe5 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:509e7a4133fc6cf0a9ecb01cb5df69d2e7f7023592b60299f020cff403510737 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:509e7a4133fc6cf0a9ecb01cb5df69d2e7f7023592b60299f020cff403510737 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:509e7a4133fc6cf0a9ecb01cb5df69d2e7f7023592b60299f020cff403510737 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:6f491776bcd7e80e141b33c14c3250f231e69798b48199ae3ef9a2ea2373fe93 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:6f491776bcd7e80e141b33c14c3250f231e69798b48199ae3ef9a2ea2373fe93 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:6f491776bcd7e80e141b33c14c3250f231e69798b48199ae3ef9a2ea2373fe93 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:da27c89d589a52c67d9575d7fb07b15c3c9a34f81e2eef5bdb54da6c9678d27b | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:da27c89d589a52c67d9575d7fb07b15c3c9a34f81e2eef5bdb54da6c9678d27b | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:da27c89d589a52c67d9575d7fb07b15c3c9a34f81e2eef5bdb54da6c9678d27b | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
ComplianceAsCode~compliance-operator~H6L28J.dockerbuild
|
29.7 KB |
|
|
ComplianceAsCode~compliance-operator~HKSRZS.dockerbuild
|
41.8 KB |
|
|
ComplianceAsCode~compliance-operator~PIUASA.dockerbuild
|
54 KB |
|
|
ComplianceAsCode~compliance-operator~YQRKOU.dockerbuild
|
55 KB |
|