Skip to content

Merge pull request #12834 from ComplianceAsCode/dependabot/github_act… #3117

Merge pull request #12834 from ComplianceAsCode/dependabot/github_act…

Merge pull request #12834 from ComplianceAsCode/dependabot/github_act… #3117

Triggered via push January 16, 2025 14:31
Status Success
Total duration 20m 7s
Artifacts 1

k8s-content.yaml

on: push
container-main  /  container
16m 26s
container-main  /  sign
6s

Annotations

3 warnings and 3 notices
container-main / container
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
The 'as' keyword should match the case of the 'from' keyword: Dockerfiles/ocp4_content#L1
FromAsCasing: 'as' and 'FROM' keywords' casing do not match More info: https://docs.docker.com/go/dockerfile/rule/from-as-casing/
container-main / sign
ubuntu-latest pipelines will use ubuntu-24.04 soon. For more details, see https://github.com/actions/runner-images/issues/10636
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/k8scontent@sha256:3803281bdee72971d29bf9358f37bfc906105ed527ee1f1c77aecd4f11c19013 | jq '.[0]'
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/k8scontent@sha256:3803281bdee72971d29bf9358f37bfc906105ed527ee1f1c77aecd4f11c19013 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/k8scontent@sha256:3803281bdee72971d29bf9358f37bfc906105ed527ee1f1c77aecd4f11c19013 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text

Artifacts

Produced during runtime
Name Size
ComplianceAsCode~content~WZ1D1B.dockerbuild
173 KB