-
Notifications
You must be signed in to change notification settings - Fork 72
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Signed-off-by: GitHub <[email protected]>
- Loading branch information
1 parent
e2bfc94
commit 0237cb1
Showing
319 changed files
with
1,635 additions
and
514 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
49 changes: 49 additions & 0 deletions
49
content/chainguard/chainguard-images/reference/caddy/_index.md
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,49 @@ | ||
| --- | ||
| title: "Image Overview: caddy" | ||
| linktitle: "caddy" | ||
| type: "article" | ||
| layout: "single" | ||
| description: "Overview: caddy Chainguard Image" | ||
| date: 2022-11-01T11:07:52+02:00 | ||
| lastmod: 2022-11-01T11:07:52+02:00 | ||
| draft: false | ||
| tags: ["Reference", "Chainguard Images", "Product"] | ||
| images: [] | ||
| menu: | ||
| docs: | ||
| parent: "images-reference" | ||
| weight: 500 | ||
| toc: true | ||
| --- | ||
|
|
||
| {{< tabs >}} | ||
| {{< tab title="Overview" active=true url="/chainguard/chainguard-images/reference/caddy/" >}} | ||
| {{< tab title="Variants" active=false url="/chainguard/chainguard-images/reference/caddy/image_specs/" >}} | ||
| {{< tab title="Tags History" active=false url="/chainguard/chainguard-images/reference/caddy/tags_history/" >}} | ||
| {{< tab title="Provenance" active=false url="/chainguard/chainguard-images/reference/caddy/provenance_info/" >}} | ||
| {{</ tabs >}} | ||
|
|
||
|
|
||
|
|
||
| # Caddy | ||
|
|
||
| ## Get It! | ||
|
|
||
| The image is available on `cgr.dev`: | ||
|
|
||
| ``` | ||
| docker pull cgr.dev/chainguard/caddy:latest | ||
| ``` | ||
|
|
||
| ## Usage | ||
|
|
||
| This image comes with a default configuration `Caddyfile` located in `/etc/caddy/Caddyfile`. | ||
|
|
||
| Please refer to [upstream's excellent (and comprehensive) documentation](https://caddyserver.com/docs/) on the subject of configuring Caddy for your needs. | ||
|
|
||
| The following example runs `caddy` with a custom configuration file: | ||
|
|
||
| ``` | ||
| docker run -it --rm -v "$(pwd)/Caddyfile:/etc/caddy/Caddyfile" cgr.dev/chainguard/caddy caddy run --config /etc/caddy/Caddyfile | ||
| ``` | ||
|
|
71 changes: 71 additions & 0 deletions
71
content/chainguard/chainguard-images/reference/caddy/image_specs.md
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,71 @@ | ||
| --- | ||
| title: "caddy Image Variants" | ||
| type: "article" | ||
| unlisted: true | ||
| description: "Detailed information about the public caddy Chainguard Image variants" | ||
| date: 2023-03-07T11:07:52+02:00 | ||
| lastmod: 2023-03-07T11:07:52+02:00 | ||
| draft: false | ||
| tags: ["Reference", "Chainguard Images", "Product"] | ||
| images: [] | ||
| weight: 550 | ||
| toc: true | ||
| --- | ||
|
|
||
| {{< tabs >}} | ||
| {{< tab title="Overview" active=false url="/chainguard/chainguard-images/reference/caddy/" >}} | ||
| {{< tab title="Variants" active=true url="/chainguard/chainguard-images/reference/caddy/image_specs/" >}} | ||
| {{< tab title="Tags History" active=false url="/chainguard/chainguard-images/reference/caddy/tags_history/" >}} | ||
| {{< tab title="Provenance" active=false url="/chainguard/chainguard-images/reference/caddy/provenance_info/" >}} | ||
| {{</ tabs >}} | ||
|
|
||
| This page shows detailed information about all public variants of the Chainguard **caddy** Image. | ||
|
|
||
| ## Variants Compared | ||
| The **caddy** Chainguard Image currently has 2 public variants: | ||
|
|
||
| - `latest-dev` | ||
| - `latest` | ||
|
|
||
| The table has detailed information about each of these variants. | ||
|
|
||
| | | latest-dev | latest | | ||
| |--------------|------------------|------------------| | ||
| | Default User | `nonroot` | `nonroot` | | ||
| | Entrypoint | `/usr/bin/caddy` | `/usr/bin/caddy` | | ||
| | CMD | `run` | `run` | | ||
| | Workdir | not specified | not specified | | ||
| | Has apk? | yes | no | | ||
| | Has a shell? | yes | no | | ||
|
|
||
| Check the [tags history page](/chainguard/chainguard-images/reference/caddy/tags_history/) for the full list of available tags. | ||
|
|
||
| ## Packages Included | ||
| The table shows package distribution across variants. | ||
|
|
||
| | | latest-dev | latest | | ||
| |--------------------------|------------|--------| | ||
| | `apk-tools` | X | | | ||
| | `bash` | X | | | ||
| | `busybox` | X | | | ||
| | `ca-certificates-bundle` | X | X | | ||
| | `caddy` | X | X | | ||
| | `git` | X | | | ||
| | `glibc` | X | | | ||
| | `glibc-locale-posix` | X | | | ||
| | `ld-linux` | X | | | ||
| | `libbrotlicommon1` | X | | | ||
| | `libbrotlidec1` | X | | | ||
| | `libcrypt1` | X | | | ||
| | `libcrypto3` | X | | | ||
| | `libcurl-openssl4` | X | | | ||
| | `libexpat1` | X | | | ||
| | `libnghttp2-14` | X | | | ||
| | `libpcre2-8-0` | X | | | ||
| | `libssl3` | X | | | ||
| | `ncurses` | X | | | ||
| | `ncurses-terminfo-base` | X | | | ||
| | `openssl-config` | X | | | ||
| | `wolfi-baselayout` | X | X | | ||
| | `zlib` | X | | | ||
|
|
73 changes: 73 additions & 0 deletions
73
content/chainguard/chainguard-images/reference/caddy/provenance_info.md
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,73 @@ | ||
| --- | ||
| title: "Provenance Information for caddy Images" | ||
| type: "article" | ||
| unlisted: true | ||
| description: "Provenance information for caddy Chainguard Image" | ||
| date: 2022-11-01T11:07:52+02:00 | ||
| lastmod: 2022-11-01T11:07:52+02:00 | ||
| draft: false | ||
| tags: ["Reference", "Chainguard Images", "Product"] | ||
| images: [] | ||
| weight: 600 | ||
| toc: true | ||
| --- | ||
|
|
||
| {{< tabs >}} | ||
| {{< tab title="Overview" active=false url="/chainguard/chainguard-images/reference/caddy/" >}} | ||
| {{< tab title="Variants" active=false url="/chainguard/chainguard-images/reference/caddy/image_specs/" >}} | ||
| {{< tab title="Tags History" active=false url="/chainguard/chainguard-images/reference/caddy/tags_history/" >}} | ||
| {{< tab title="Provenance" active=true url="/chainguard/chainguard-images/reference/caddy/provenance_info/" >}} | ||
| {{</ tabs >}} | ||
|
|
||
| All Chainguard Images contain verifiable signatures and high-quality SBOMs (software bill of materials), features that enable users to confirm the origin of each image built and have a detailed list of everything that is packed within. | ||
|
|
||
| ## Verifying Image Signatures | ||
| The **caddy** Chainguard Images are signed using Sigstore, and you can check the included signatures using `cosign`. | ||
|
|
||
| The following command requires [cosign](https://docs.sigstore.dev/cosign/overview/) and [jq](https://stedolan.github.io/jq/) to be installed on your machine. It will pull detailed information about all signatures found for the provided image. | ||
|
|
||
| ```shell | ||
| cosign verify --certificate-oidc-issuer=https://token.actions.githubusercontent.com --certificate-identity=https://github.com/chainguard-images/images/.github/workflows/release.yaml@refs/heads/main cgr.dev/chainguard/caddy | jq | ||
| ``` | ||
|
|
||
| By default, this command will fetch signatures for the `latest` tag. You can also specify the tag you want to fetch signatures for. | ||
|
|
||
| ## Downloading and Verifying SBOMs | ||
|
|
||
| All Chainguard Images come with a high-quality Software Bill Of Materials (SBOM) attested at build-time. The SBOM can be downloaded using the cosign tool: | ||
|
|
||
| ```shell | ||
| cosign download attestation \ | ||
| --predicate-type=https://spdx.dev/Document \ | ||
| cgr.dev/chainguard/caddy | jq -r .payload | base64 -d | jq | ||
| ``` | ||
| By default, this command will fetch the SBOM assigned to the `latest` tag. You can also specify the tag you want to fetch the SBOM from. | ||
|
|
||
| With cosign 2.0+, you can use the `cosign verify-attestation` command to check the signature of an SBOM: | ||
|
|
||
| ```shell | ||
| cosign verify-attestation \ | ||
| --type https://spdx.dev/Document \ | ||
| --certificate-oidc-issuer=https://token.actions.githubusercontent.com \ | ||
| --certificate-identity=https://github.com/chainguard-images/images/.github/workflows/release.yaml@refs/heads/main \ | ||
| --platform=linux/amd64 \ | ||
| cgr.dev/chainguard/caddy | ||
| ``` | ||
|
|
||
| And you should get output that verifies the SBOM signature in cosign's transparency log: | ||
|
|
||
| ``` | ||
| Verification for cgr.dev/chainguard/caddy -- | ||
| The following checks were performed on each of these signatures: | ||
| - The cosign claims were validated | ||
| - Existence of the claims in the transparency log was verified offline | ||
| - The code-signing certificate was verified using trusted certificate authority certificates | ||
| Certificate subject: https://github.com/chainguard-images/images/.github/workflows/release.yaml@refs/heads/main | ||
| Certificate issuer URL: https://token.actions.githubusercontent.com | ||
| GitHub Workflow Trigger: schedule | ||
| GitHub Workflow SHA: da283c26829d46c2d2883de5ff98bee672428696 | ||
| GitHub Workflow Name: .github/workflows/release.yaml | ||
| GitHub Workflow Trigger chainguard-images/images | ||
| GitHub Workflow Ref: refs/heads/main | ||
| ... | ||
| ``` |
Oops, something went wrong.