Skip to content

Merge pull request #117 from banzaicloud/unit_testing #3

Merge pull request #117 from banzaicloud/unit_testing

Merge pull request #117 from banzaicloud/unit_testing #3

Triggered via push July 14, 2023 17:49
Status Success
Total duration 7m 34s
Artifacts 4
This run and associated checks have been archived and are scheduled for deletion. Learn more about checks retention

release.yaml

on: push
Matrix: Artifacts / Controller image
Matrix: Artifacts / Refresher image
Fit to window
Zoom out
Zoom in

Annotations

16 notices
Verify signature
cosign verify --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' ghcr.io/banzaicloud/imagepullsecrets-refresher@sha256:945a6b6808e7417f648721ed646ca3dc449597eef07d50e5ef48946f9b917642
Verify signature(pretty print)
cosign verify --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' ghcr.io/banzaicloud/imagepullsecrets-refresher@sha256:945a6b6808e7417f648721ed646ca3dc449597eef07d50e5ef48946f9b917642 | jq '.[0]'
Verify SBOM attestation
cosign verify-attestation --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' --type spdx ghcr.io/banzaicloud/imagepullsecrets-refresher@sha256:945a6b6808e7417f648721ed646ca3dc449597eef07d50e5ef48946f9b917642
Inspect SBOM
cosign verify-attestation --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' --type spdx ghcr.io/banzaicloud/imagepullsecrets-refresher@sha256:945a6b6808e7417f648721ed646ca3dc449597eef07d50e5ef48946f9b917642 | jq '.payload |= @base64d | .payload | fromjson | select(.predicateType == "https://spdx.dev/Document") | .predicate | fromjson'
Verify SBOM attestation
cosign verify-attestation --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' --type spdx ghcr.io/banzaicloud/imagepullsecrets@sha256:fd43c6a4bd57a03990b54fb892cc7bd845ff5a59e8b681133a7b3bdc4b02b5f3
Inspect SBOM
cosign verify-attestation --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' --type spdx ghcr.io/banzaicloud/imagepullsecrets@sha256:fd43c6a4bd57a03990b54fb892cc7bd845ff5a59e8b681133a7b3bdc4b02b5f3 | jq '.payload |= @base64d | .payload | fromjson | select(.predicateType == "https://spdx.dev/Document") | .predicate | fromjson'
Verify signature
cosign verify --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' ghcr.io/banzaicloud/imagepullsecrets@sha256:fd43c6a4bd57a03990b54fb892cc7bd845ff5a59e8b681133a7b3bdc4b02b5f3
Verify signature(pretty print)
cosign verify --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' ghcr.io/banzaicloud/imagepullsecrets@sha256:fd43c6a4bd57a03990b54fb892cc7bd845ff5a59e8b681133a7b3bdc4b02b5f3 | jq '.[0]'
Verify SBOM attestation
cosign verify-attestation --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' --type spdx ghcr.io/banzaicloud/imagepullsecrets-refresher@sha256:7f24e3988acd2142e025a221ba46802f7e7d6c0238340d8b3afaacf23fd69ddf
Inspect SBOM
cosign verify-attestation --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' --type spdx ghcr.io/banzaicloud/imagepullsecrets-refresher@sha256:7f24e3988acd2142e025a221ba46802f7e7d6c0238340d8b3afaacf23fd69ddf | jq '.payload |= @base64d | .payload | fromjson | select(.predicateType == "https://spdx.dev/Document") | .predicate | fromjson'
Verify signature
cosign verify --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' ghcr.io/banzaicloud/imagepullsecrets-refresher@sha256:7f24e3988acd2142e025a221ba46802f7e7d6c0238340d8b3afaacf23fd69ddf
Verify signature(pretty print)
cosign verify --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' ghcr.io/banzaicloud/imagepullsecrets-refresher@sha256:7f24e3988acd2142e025a221ba46802f7e7d6c0238340d8b3afaacf23fd69ddf | jq '.[0]'
Verify signature
cosign verify --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' ghcr.io/banzaicloud/imagepullsecrets@sha256:71a17ea5b212eeeb3250c16cc24ed72ef45a9a69a987aff394e4e5e0aaaef6d0
Verify signature(pretty print)
cosign verify --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' ghcr.io/banzaicloud/imagepullsecrets@sha256:71a17ea5b212eeeb3250c16cc24ed72ef45a9a69a987aff394e4e5e0aaaef6d0 | jq '.[0]'
Verify SBOM attestation
cosign verify-attestation --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' --type spdx ghcr.io/banzaicloud/imagepullsecrets@sha256:71a17ea5b212eeeb3250c16cc24ed72ef45a9a69a987aff394e4e5e0aaaef6d0
Inspect SBOM
cosign verify-attestation --certificate-identity 'https://github.com/banzaicloud/imps/.github/workflows/release.yaml@refs/tags/v0.3.13' --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' --type spdx ghcr.io/banzaicloud/imagepullsecrets@sha256:71a17ea5b212eeeb3250c16cc24ed72ef45a9a69a987aff394e4e5e0aaaef6d0 | jq '.payload |= @base64d | .payload | fromjson | select(.predicateType == "https://spdx.dev/Document") | .predicate | fromjson'

Artifacts

Produced during runtime
Name Size
[controller-image] SBOM Expired
93.8 KB
[controller-image] Trivy scan results Expired
56 KB
[refresher-image] SBOM Expired
93.8 KB
[refresher-image] Trivy scan results Expired
56 KB