Merge pull request #12822 from mpurg/ubuntu2404_cis_4.1.1 #3121
dodysk8s-content.yaml
on: push
container-main
/
container
15m 56s
container-main
/
sign
6s
Annotations
3 warnings and 3 notices
|
container-main / container
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
The 'as' keyword should match the case of the 'from' keyword:
Dockerfiles/ocp4_content#L1
FromAsCasing: 'as' and 'FROM' keywords' casing do not match
More info: https://docs.docker.com/go/dockerfile/rule/from-as-casing/
|
|
container-main / sign
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/k8scontent@sha256:2feba71d3d86f4c7f0a4e326e60f45c6e1ab9b41624f083afedf527c2afbdb88 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/k8scontent@sha256:2feba71d3d86f4c7f0a4e326e60f45c6e1ab9b41624f083afedf527c2afbdb88 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/k8scontent@sha256:2feba71d3d86f4c7f0a4e326e60f45c6e1ab9b41624f083afedf527c2afbdb88 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
ComplianceAsCode~content~P7L7NR.dockerbuild
|
175 KB |
|