Skip to content

Merge pull request #623 from rhmdnd/add-dockerfiles-for-konflux-builds #290

Merge pull request #623 from rhmdnd/add-dockerfiles-for-konflux-builds

Merge pull request #623 from rhmdnd/add-dockerfiles-for-konflux-builds #290

Triggered via push November 27, 2024 16:31
Status Success
Total duration 1h 41m 48s
Artifacts 5
bundle-container-push-latest  /  container
29s
bundle-container-push-latest / container
must-gather-latest  /  container
44s
must-gather-latest / container
openscap-container-push-latest  /  container
1m 38s
openscap-container-push-latest / container
operator-container-push-latest  /  container
1h 40m
operator-container-push-latest / container
bundle-container-push-latest  /  sign
6s
bundle-container-push-latest / sign
must-gather-latest  /  sign
7s
must-gather-latest / sign
openscap-container-push-latest  /  sign
6s
openscap-container-push-latest / sign
operator-container-push-latest  /  sign
6s
operator-container-push-latest / sign
catalog-container-push-pr  /  container
54s
catalog-container-push-pr / container
catalog-container-push-pr  /  sign
7s
catalog-container-push-pr / sign
Fit to window
Zoom out
Zoom in

Annotations

1 warning and 15 notices
JSON arguments recommended for ENTRYPOINT/CMD to prevent unintended behavior related to OS signals: images/must-gather/Dockerfile.ocp#L6
JSONArgsRecommended: JSON arguments recommended for ENTRYPOINT to prevent unintended behavior related to OS signals More info: https://docs.docker.com/go/dockerfile/rule/json-args-recommended/
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:006d6f4267abda31f8f97085ddfa3b1160cb40f8c9b4ac6eca3a84d733fa0e5c | jq '.[0]'
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:006d6f4267abda31f8f97085ddfa3b1160cb40f8c9b4ac6eca3a84d733fa0e5c | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-bundle@sha256:006d6f4267abda31f8f97085ddfa3b1160cb40f8c9b4ac6eca3a84d733fa0e5c | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:3882a42022da8a32832789c1ffda38fc2d9922c52736278d0a7c89f15f255fa4 | jq '.[0]'
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:3882a42022da8a32832789c1ffda38fc2d9922c52736278d0a7c89f15f255fa4 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/must-gather-ocp@sha256:3882a42022da8a32832789c1ffda38fc2d9922c52736278d0a7c89f15f255fa4 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:b4a4285d613bcb6aeef9a436f5e66de03094c8251c063c309654916e471c3b55 | jq '.[0]'
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:b4a4285d613bcb6aeef9a436f5e66de03094c8251c063c309654916e471c3b55 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/openscap-ocp@sha256:b4a4285d613bcb6aeef9a436f5e66de03094c8251c063c309654916e471c3b55 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:2cb5c725e62ff0f60de797cf7b11583e19ffc56ccc53882cc5034eb996c826be | jq '.[0]'
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:2cb5c725e62ff0f60de797cf7b11583e19ffc56ccc53882cc5034eb996c826be | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator@sha256:2cb5c725e62ff0f60de797cf7b11583e19ffc56ccc53882cc5034eb996c826be | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text
Verify signature
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:1898a90563476ddd10fe72b48665cc36079be4b8d450d4a84f34e2de2003c8f5 | jq '.[0]'
Inspect signature bundle
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:1898a90563476ddd10fe72b48665cc36079be4b8d450d4a84f34e2de2003c8f5 | jq '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson'
Inspect certificate
COSIGN_EXPERIMENTAL=1 cosign verify ghcr.io/complianceascode/compliance-operator-catalog@sha256:1898a90563476ddd10fe72b48665cc36079be4b8d450d4a84f34e2de2003c8f5 | jq -r '.[0].optional.Bundle.Payload.body |= @base64d | .[0].optional.Bundle.Payload.body | fromjson | .spec.signature.publicKey.content |= @base64d | .spec.signature.publicKey.content' | openssl x509 -text

Artifacts

Produced during runtime
Name Size
ComplianceAsCode~compliance-operator~0Z7EXT.dockerbuild
93.2 KB
ComplianceAsCode~compliance-operator~40NO31.dockerbuild
113 KB
ComplianceAsCode~compliance-operator~87HQ0H.dockerbuild
43.5 KB
ComplianceAsCode~compliance-operator~M5W5S3.dockerbuild
90.6 KB
ComplianceAsCode~compliance-operator~QHHGCE.dockerbuild
44.3 KB