New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Skopeo copy fails when image contains attestation manifest #1874
Comments
Have the same issue with my workflows: https://github.com/instrumentisto/rust-docker-image/actions/runs/3984656840/jobs/6831114769#step:6:50 |
Thanks for your report. What version of Skopeo is this? That’s not expected with ≥ 1.9.0 AFAICS. If it happens with a recent version, please attach the complete output of |
Thanks @mtrmac. I was using the latest version in the Debian Bullseye repo, which is horrendously out of date. It works fine when I build the latest version myself. @tyranron as another workaround I added |
@sjauld thanks for the workarounds! |
@snowmanstark Please file a separate issue, include the specific version number of Skopeo, and the debug output per #1874 (comment) . |
there's a new |
When images are built with buildx >= v0.10.0, an SLSA Provenance attestation is added. This causes skopeo copy to fail with the error
See https://github.com/docker/buildx/releases/tag/v0.10.0
The text was updated successfully, but these errors were encountered: