Merge pull request #12665 from ComplianceAsCode/dependabot/github_act… #2985
jan-cernyk8s-content.yaml
on: push
container-main
/
container
15m 26s
container-main
/
sign
6s
Annotations
3 warnings and 3 notices
|
container-main / container
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
The 'as' keyword should match the case of the 'from' keyword:
Dockerfiles/ocp4_content#L1
FromAsCasing: 'as' and 'FROM' keywords' casing do not match
More info: https://docs.docker.com/go/dockerfile/rule/from-as-casing/
|
|
container-main / sign
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
|
|
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/k8scontent@sha256:9e597616e00274016c97cde6a21bc8c93c5479e18b55b39ad7775a55ebd02f27 | jq '.[0]'
|
|
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/k8scontent@sha256:9e597616e00274016c97cde6a21bc8c93c5479e18b55b39ad7775a55ebd02f27 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
|
|
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/k8scontent@sha256:9e597616e00274016c97cde6a21bc8c93c5479e18b55b39ad7775a55ebd02f27 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
|
Artifacts
Produced during runtime
| Name | Size | |
|---|---|---|
|
ComplianceAsCode~content~L986O4.dockerbuild
|
177 KB |
|