ci: Don't hardcode the cert identity generation on attestations #53
viccuadrelease.yml
on: push
Build kwctl binaries
/
Detect kwctl changes
7s
Check Cargo.toml files version
6s
Matrix: Build container images
Matrix: Build kwctl binaries / Build darwin binary
Matrix: Build kwctl binaries / Build linux binaries
Matrix: Build kwctl binaries / Build windows (x86_64) binary
ci
/
Shellcheck
5s
ci
/
Spelling check
9s
ci
/
Helm unittest
7s
Matrix: Generate attestations
Matrix: Merge multi-arch manifests
Matrix: ci / check-kwctl-cross-platform
ci
/
Go tests
4m 45s
ci
/
Go e2e tests
32m 19s
ci
/
Golangci-lint
31s
ci
/
Validate Hauler manifest
5s
ci
/
Check if the kwctl reference documentation is up to date
9m 3s
Matrix: ci / clippy-rust-per-crate
Matrix: ci / fmt-rust-per-crate
Matrix: ci / unit-tests-rust-per-crate
ci
/
E2E tests (burrego)
2m 5s
ci
/
E2E tests (kwctl)
11m 29s
ci
/
E2E tests sigstore (kwctl)
9m 0s
ci
/
E2E tests sigstore (policy-server)
10m 16s
ci
/
Integration tests (policy-server)
14m 52s
ci
/
Integration tests (policy-evaluator)
19m 8s
Matrix: ci / Build kwctl / Build darwin binary
Matrix: ci / Build kwctl / Build linux binaries
Matrix: ci / Build kwctl / Build windows (x86_64) binary
Trigger Helm Charts Sync Workflow
Annotations
11 errors and 12 warnings
|
Generate attestations (kubewarden-controller, amd64) / Sign attestations and upload as artifacts
The strategy configuration was canceled because "attestation.audit-scanner_arm64" failed
|
|
Generate attestations (audit-scanner, arm64) / Sign attestations and upload as artifacts
Process completed with exit code 1.
|
|
Generate attestations (policy-server, arm64) / Sign attestations and upload as artifacts
The strategy configuration was canceled because "attestation.audit-scanner_arm64" failed
|
|
Generate attestations (kubewarden-controller, arm64) / Sign attestations and upload as artifacts
The strategy configuration was canceled because "attestation.audit-scanner_arm64" failed
|
|
Generate attestations (policy-server, amd64) / Sign attestations and upload as artifacts
The strategy configuration was canceled because "attestation.audit-scanner_arm64" failed
|
|
Generate attestations (audit-scanner, amd64) / Sign attestations and upload as artifacts
The strategy configuration was canceled because "attestation.audit-scanner_arm64" failed
|
|
Release
The strategy configuration was canceled because "attestation.audit-scanner_arm64" failed
|
|
Release
The strategy configuration was canceled because "attestation.audit-scanner_arm64" failed
|
|
Release
The strategy configuration was canceled because "attestation.audit-scanner_arm64" failed
|
|
Release
The strategy configuration was canceled because "attestation.audit-scanner_arm64" failed
|
|
Release
The strategy configuration was canceled because "attestation.audit-scanner_arm64" failed
|
|
Build container images (audit-scanner, arm64)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83, docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef, docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051, docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
Build container images (kubewarden-controller, amd64)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83, docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef, docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051, docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
Build container images (audit-scanner, amd64)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83, docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef, docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051, docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
ci / Helm unittest
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: azure/setup-helm@1a275c3b69536ee54be43f2070a358922e12c8d4. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
Build container images (policy-server, arm64)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83, docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef, docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051, docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
ci / Go tests
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
Build container images (policy-server, amd64)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: docker/build-push-action@263435318d21b8e681c14492fe198d362a7d2c83, docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef, docker/metadata-action@c299e40c65443455700f0fdfc63efafe5b349051, docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
Generate attestations (audit-scanner, arm64) / Sign attestations and upload as artifacts
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: docker/login-action@c94ce9fb468520275223c153574b00df6fe4bcc9. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
Merge multi-arch manifests (policy-server)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef, docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
Merge multi-arch manifests (kubewarden-controller)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef, docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
Merge multi-arch manifests (audit-scanner)
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: docker/login-action@5e57cd118135c172c3672efd75eb46360885c0ef, docker/setup-buildx-action@8d2750c68a42422c14e847fe6c8ac0403b4cbd6f. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
|
ci / coverage-rust
Node.js 20 actions are deprecated. The following actions are running on Node.js 20 and may not work as expected: actions/github-script@60a0d83039c74a4aee543508d2ffcb1c3799cdea. Actions will be forced to run with Node.js 24 by default starting June 2nd, 2026. Please check if updated versions of these actions are available that support Node.js 24. To opt into Node.js 24 now, set the FORCE_JAVASCRIPT_ACTIONS_TO_NODE24=true environment variable on the runner or in your workflow file. Once Node.js 24 becomes the default, you can temporarily opt out by setting ACTIONS_ALLOW_USE_UNSECURE_NODE_VERSION=true. For more information see: https://github.blog/changelog/2025-09-19-deprecation-of-node-20-on-github-actions-runners/
|
Artifacts
Produced during runtime
| Name | Size | Digest | |
|---|---|---|---|
|
digest-audit-scanner-amd64
Expired
|
221 Bytes |
sha256:3dcff6391bb2e079687cc4083106fc2919e08d801922dd1521eebbdd02f200b5
|
|
|
digest-audit-scanner-arm64
Expired
|
221 Bytes |
sha256:13c5fa58e9ab73b7d279a80c9640249d22795b22a0cd92067cebca7f3fbdbfce
|
|
|
digest-kubewarden-controller-amd64
Expired
|
237 Bytes |
sha256:1fcdebde5a8609b1676ff5b8ca378a94778b1cc384549ebe59da3edaf12b90f3
|
|
|
digest-kubewarden-controller-arm64
Expired
|
238 Bytes |
sha256:b8425a7077fcc0e9dfbf2fdb7975b4ef382237431f832a824adc0a0a0d1a334c
|
|
|
digest-policy-server-amd64
Expired
|
222 Bytes |
sha256:c6e23de3230a861bd727343b7af98223ec7b77b212ddb2bb720e381d510d1353
|
|
|
digest-policy-server-arm64
Expired
|
222 Bytes |
sha256:928e7a53f96c08e7c15621629e7819e681d5d9cf2f6264ebd74999ef4e31619d
|
|
|
kwctl-airgap-scripts
|
1.66 KB |
sha256:a5bb4b01db5a099ddcabefcf59854724b05b3cfb19f1c27ad3a7e246d72f0e73
|
|
|
kwctl-darwin-aarch64
|
18.7 MB |
sha256:9b1c61beb334960d0f5f6cfc3a6f1ecd1f15fc797be9e44b04b91425c4864043
|
|
|
kwctl-darwin-aarch64-sbom
|
170 KB |
sha256:026e352fe1a91347c0955cb5517f676c8fcd1f6af6ef012398ebc8af12d10fe7
|
|
|
kwctl-darwin-x86_64
|
20 MB |
sha256:0346133047d173adb5f78e06e3b52492b78998ac2dfba292d054387ddf02eb15
|
|
|
kwctl-darwin-x86_64-sbom
|
170 KB |
sha256:79e59dae12bd82d0f22acc837a47eda04411a3a965af70e81525c1524e77f19a
|
|
|
kwctl-linux-aarch64
|
19.8 MB |
sha256:8200e8d8d42d21e9c73a51c0bba7f2f7c6560f4cde57d8a5a1f7a2096d3f9c33
|
|
|
kwctl-linux-aarch64-sbom
|
159 KB |
sha256:5b89c9395868e329f92f476327dc1fc6e51c5f3b241b1c54e765919199b0e6bc
|
|
|
kwctl-linux-x86_64
|
21.2 MB |
sha256:005cd02cffa14b0c57268bc7a6d4870410b55f5c114c1fdf5f1d050b19c58f9a
|
|
|
kwctl-linux-x86_64-sbom
|
160 KB |
sha256:87957a7152ddfcc4be3effb30e0fb823f66cbaf06c91e818e3458b586a30f058
|
|
|
kwctl-windows-x86_64
|
16.7 MB |
sha256:616ace8a4e2749259af2787751022142f81b311b9790824830d363bdb1bf9078
|
|
|
kwctl-windows-x86_64-sbom
|
184 KB |
sha256:4e4e9f473edccab56b668ef76e79c86baf892fe515c03ca1345c32cbb82ef291
|
|
|
viccuad~kubewarden-controller~360A5W.dockerbuild
|
73.2 KB |
sha256:312a99524df951f0c0a7aab08f5f3f842ee208c1ccd8a2a5d56de3236b0effa1
|
|
|
viccuad~kubewarden-controller~78QY6M.dockerbuild
|
51.8 KB |
sha256:2e5bfaa6f51881476cccb7fce195a9276a263ae0dce6cad6426b513c916710a0
|
|
|
viccuad~kubewarden-controller~OWMULL.dockerbuild
|
98.1 KB |
sha256:01e3e4d11ba08134d9890c90678451d11a0dba55aab17413b472add4f767c104
|
|
|
viccuad~kubewarden-controller~PBMOL3.dockerbuild
|
98.8 KB |
sha256:690426e66864596ad92aec8157aaff7b0aa9993d94270826e10aa2e66551d453
|
|
|
viccuad~kubewarden-controller~Y0DUZO.dockerbuild
|
70.8 KB |
sha256:1930b3565d9e36019179f0cec8ed726bc0e9c35ed17cb3ed2a735ac236dcac5b
|
|
|
viccuad~kubewarden-controller~ZE6MYG.dockerbuild
|
50.1 KB |
sha256:1d5e22266c05314a58937bcc33e242a3e54db2962cbfdae5c626862006274552
|
|