Skip to content

✨ enable container signing #2841

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
metal3-io-bot merged 1 commit into from
Dec 11, 2025
Merged

✨ enable container signing #2841

metal3-io-bot merged 1 commit into from
Dec 11, 2025

Conversation

@metal3-io-bot
Copy link
Contributor

@metal3-io-bot metal3-io-bot commented Dec 11, 2025

This is an automated cherry-pick of #2826

/assign tuminoid

@tuminoid
enable container signing
12429ee 
This commit enables container signing for all images build from this
repository via build-images-action.yml and release.yml, both reusing
container-image-build.yml from project-infra.

All container images will be built with keyless signing, utilizing
short-lived Github Actions OIDC tokens (id-token: write) and the
certificates and transparency logs are utilizing Sigstore's public
Fulcio and Rekor services.

Signed-off-by: Tuomo Tanskanen <[email protected]>
@metal3-io-bot metal3-io-bot mentioned this pull request Dec 11, 2025
Merged
@metal3-io-bot metal3-io-bot added this to the BMO - v0.10 milestone Dec 11, 2025
@metal3-io-bot metal3-io-bot added the size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. label Dec 11, 2025
tuminoid
tuminoid reviewed Dec 11, 2025
View reviewed changes
Copy link
Member

@tuminoid tuminoid left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/retitle ✨ enable container signing
/lgtm
/cc @Rozzii @lentzi90

@metal3-io-bot metal3-io-bot changed the title [release-0.10] ✨ enable container signing ✨ enable container signing Dec 11, 2025
@metal3-io-bot metal3-io-bot added the lgtm Indicates that a PR is ready to be merged. label Dec 11, 2025
kashifest
kashifest reviewed Dec 11, 2025
View reviewed changes
Copy link
Member

@kashifest kashifest left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

/approve

@metal3-io-bot
Copy link
Contributor Author

metal3-io-bot commented Dec 11, 2025

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: kashifest

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@metal3-io-bot metal3-io-bot added the approved Indicates a PR has been approved by an approver from all required OWNERS files. label Dec 11, 2025
@metal3-io-bot metal3-io-bot merged commit 760fe36 into metal3-io:release-0.10 Dec 11, 2025
24 of 27 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@tuminoid tuminoid tuminoid left review comments

@kashifest kashifest kashifest left review comments

@Rozzii Rozzii Awaiting requested review from Rozzii

@lentzi90 lentzi90 Awaiting requested review from lentzi90

Assignees

@tuminoid tuminoid

Labels

approved Indicates a PR has been approved by an approver from all required OWNERS files. lgtm Indicates that a PR is ready to be merged. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files.

Projects

None yet

Milestone

BMO - v0.10

Development

Successfully merging this pull request may close these issues.

3 participants

@metal3-io-bot @tuminoid @kashifest