feat: test secure image publishing#2
Closed
sonupreetam wants to merge 76 commits into
Closed
Conversation
Signed-off-by: Qingmin Duanmu <qduanmu@redhat.com>
fix: update the link for hyperproof integration
Signed-off-by: Qingmin Duanmu <qduanmu@redhat.com>
chore: update README.md for awss3 comment
Updated files: - .github/workflows/ci_checks.yml - .github/workflows/ci_dependencies.yml - .github/workflows/ci_scheduled.yml - .github/workflows/ci_security.yml - .github/dependabot.yml - .mega-linter.yml - .yamllint.yml - commitlint.config.js - .github/pull_request_template.md - .github/ISSUE_TEMPLATE/bug_report.md - .github/ISSUE_TEMPLATE/feature_request.md
Signed-off-by: Marcus Burghardt <maburgha@redhat.com>
We need to review the warnings and create a separate PR addressing what is necessary before enabling the check. It is not enabled for now to avoid many CI failures before we can properly review them. Signed-off-by: Marcus Burghardt <maburgha@redhat.com>
Signed-off-by: Marcus Burghardt <maburgha@redhat.com>
Signed-off-by: Marcus Burghardt <maburgha@redhat.com>
…ards-20251217161802 chore: sync repository standards
Signed-off-by: Qingmin Duanmu <qduanmu@redhat.com>
chore: CPLYTM-1219 update container files
Signed-off-by: Qingmin Duanmu <qduanmu@redhat.com>
docs: CPLYTM-1218 add doc for container layer design
chore: fix test-coverage.yml ci lint fail
Bumps [actions/setup-go](https://github.com/actions/setup-go) from 5.5.0 to 6.1.0. - [Release notes](https://github.com/actions/setup-go/releases) - [Commits](actions/setup-go@v5.5.0...4dc6199) --- updated-dependencies: - dependency-name: actions/setup-go dependency-version: 6.1.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
…tions/actions/setup-go-6.1.0 ci(deps): bump actions/setup-go from 5.5.0 to 6.1.0
Bumps [github.com/gin-gonic/gin](https://github.com/gin-gonic/gin) from 1.10.1 to 1.11.0. - [Release notes](https://github.com/gin-gonic/gin/releases) - [Changelog](https://github.com/gin-gonic/gin/blob/master/CHANGELOG.md) - [Commits](gin-gonic/gin@v1.10.1...v1.11.0) --- updated-dependencies: - dependency-name: github.com/gin-gonic/gin dependency-version: 1.11.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
…s/compass/github.com/gin-gonic/gin-1.11.0 chore(deps): bump github.com/gin-gonic/gin from 1.10.1 to 1.11.0 in /compass
Bumps [github.com/goccy/go-yaml](https://github.com/goccy/go-yaml) from 1.18.0 to 1.19.1. - [Release notes](https://github.com/goccy/go-yaml/releases) - [Changelog](https://github.com/goccy/go-yaml/blob/master/CHANGELOG.md) - [Commits](goccy/go-yaml@v1.18.0...v1.19.1) --- updated-dependencies: - dependency-name: github.com/goccy/go-yaml dependency-version: 1.19.1 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
…s/compass/github.com/goccy/go-yaml-1.19.1 chore(deps): bump github.com/goccy/go-yaml from 1.18.0 to 1.19.1 in /compass
Bumps [github.com/getkin/kin-openapi](https://github.com/getkin/kin-openapi) from 0.132.0 to 0.133.0. - [Release notes](https://github.com/getkin/kin-openapi/releases) - [Commits](getkin/kin-openapi@v0.132.0...v0.133.0) --- updated-dependencies: - dependency-name: github.com/getkin/kin-openapi dependency-version: 0.133.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
…s/compass/github.com/getkin/kin-openapi-0.133.0 chore(deps): bump github.com/getkin/kin-openapi from 0.132.0 to 0.133.0 in /compass
Bumps [docker/setup-buildx-action](https://github.com/docker/setup-buildx-action) from 3.9.0 to 3.12.0. - [Release notes](https://github.com/docker/setup-buildx-action/releases) - [Commits](docker/setup-buildx-action@f7ce87c...8d2750c) --- updated-dependencies: - dependency-name: docker/setup-buildx-action dependency-version: 3.12.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
…tions/docker/setup-buildx-action-3.12.0 ci(deps): bump docker/setup-buildx-action from 3.9.0 to 3.12.0
Bumps [docker/metadata-action](https://github.com/docker/metadata-action) from 5.8.0 to 5.10.0. - [Release notes](https://github.com/docker/metadata-action/releases) - [Commits](docker/metadata-action@c1e5197...c299e40) --- updated-dependencies: - dependency-name: docker/metadata-action dependency-version: 5.10.0 dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <support@github.com>
…tions/docker/metadata-action-5.10.0 ci(deps): bump docker/metadata-action from 5.8.0 to 5.10.0
Bumps [SonarSource/sonarqube-scan-action](https://github.com/sonarsource/sonarqube-scan-action) from 6.0.0 to 7.0.0. - [Release notes](https://github.com/sonarsource/sonarqube-scan-action/releases) - [Commits](SonarSource/sonarqube-scan-action@fd88b7d...a31c939) --- updated-dependencies: - dependency-name: SonarSource/sonarqube-scan-action dependency-version: 7.0.0 dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <support@github.com>
…tions/SonarSource/sonarqube-scan-action-7.0.0 ci(deps): bump SonarSource/sonarqube-scan-action from 6.0.0 to 7.0.0
sonupreetam
force-pushed
the
feat/secure-image-publish
branch
from
e94fd21 to
2818016
Compare
sonupreetam
force-pushed
the
feat/secure-image-publish
branch
from
2818016 to
83b0538
Compare
sonupreetam
force-pushed
the
feat/secure-image-publish
branch
from
83b0538 to
ba587a0
Compare
sonupreetam
force-pushed
the
feat/secure-image-publish
branch
from
ba587a0 to
ffb938f
Compare
sonupreetam
force-pushed
the
feat/secure-image-publish
branch
3 times, most recently
from
b91f661 to
f2c0b68
Compare
sonupreetam
force-pushed
the
feat/secure-image-publish
branch
2 times, most recently
from
73b3a7f to
4d39852
Compare
![github-advanced-security[bot]](https://avatars.githubusercontent.com/in/57789?s=60&v=4){kind=small}
| needs: build-compass | ||
| permissions: | ||
| packages: read | ||
| uses: sonupreetam/org-infra-tests/.github/workflows/reusable_promote.yml@main |
Check warning
Code scanning / Scorecard
Pinned-Dependencies
| permissions: | ||
| packages: write | ||
| id-token: write | ||
| uses: sonupreetam/org-infra-tests/.github/workflows/reusable_sign_and_verify.yml@main |
Check warning
Code scanning / Scorecard
Pinned-Dependencies
sonupreetam
force-pushed
the
feat/secure-image-publish
branch
2 times, most recently
from
0b40cae to
9b916df
Compare
sonupreetam
force-pushed
the
feat/secure-image-publish
branch
from
9b916df to
38016fe
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
6 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Testing workflows before upstream merge