Merge pull request #650 from ComplianceAsCode/renovate/github.com-ope… #320
openshift-merge-bot[bot]release-latest.yml
on: push
bundle-container-push-latest
/
container
32s
must-gather-latest
/
container
57s
openscap-container-push-latest
/
container
1m 29s
operator-container-push-latest
/
container
1h 49m
must-gather-latest
/
sign
5s
openscap-container-push-latest
/
sign
5s
catalog-container-push-pr
/
sign
7s
Annotations
11 warnings and 15 notices
|
bundle-container-push-latest / container
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
bundle-container-push-latest / sign
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
must-gather-latest / container
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals:
images/must-gather/Dockerfile.ocp#L6
JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals
More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
|
|
must-gather-latest / sign
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
openscap-container-push-latest / container
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
openscap-container-push-latest / sign
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
operator-container-push-latest / container
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
operator-container-push-latest / sign
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
catalog-container-push-pr / container
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
catalog-container-push-pr / sign
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:b27445d5e41338b2b3d6f9d5dc3cb5497d6c5cd39b83eabe99e89d95f503f72f | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:b27445d5e41338b2b3d6f9d5dc3cb5497d6c5cd39b83eabe99e89d95f503f72f | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:b27445d5e41338b2b3d6f9d5dc3cb5497d6c5cd39b83eabe99e89d95f503f72f | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:5513b03f260283720af31397779e1a50ef4b3235ecfe5b376fc4a4140e05b7fd | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:5513b03f260283720af31397779e1a50ef4b3235ecfe5b376fc4a4140e05b7fd | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:5513b03f260283720af31397779e1a50ef4b3235ecfe5b376fc4a4140e05b7fd | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:b25bb94e71ae5844e862730b498e87bb4536507a67854dec0c4c134a90ffb665 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:b25bb94e71ae5844e862730b498e87bb4536507a67854dec0c4c134a90ffb665 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:b25bb94e71ae5844e862730b498e87bb4536507a67854dec0c4c134a90ffb665 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:515df0f897366f18c43999d800b8227511a09ef8ebd7a513a22894ba9e08f9a4 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:515df0f897366f18c43999d800b8227511a09ef8ebd7a513a22894ba9e08f9a4 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:515df0f897366f18c43999d800b8227511a09ef8ebd7a513a22894ba9e08f9a4 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:8f3469719620169c758ac76dceea0f6f63796f9430dcbfe3530432fbfaee2dd1 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:8f3469719620169c758ac76dceea0f6f63796f9430dcbfe3530432fbfaee2dd1 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:8f3469719620169c758ac76dceea0f6f63796f9430dcbfe3530432fbfaee2dd1 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
ComplianceAsCode~compliance-operator~64ZPJE.dockerbuild
|
43.2 KB |
|
|
ComplianceAsCode~compliance-operator~LNJ6T0.dockerbuild
|
86.7 KB |
|
|
ComplianceAsCode~compliance-operator~MEVI2V.dockerbuild
|
88.9 KB |
|
|
ComplianceAsCode~compliance-operator~TPO0A3.dockerbuild
|
43.8 KB |
|
|
ComplianceAsCode~compliance-operator~UVD1G8.dockerbuild
|
112 KB |
|