v1.3.5 needs to be signed, tagged and published. #405
Comments
|
Relates to #329 |
|
@diogomonica @docker/security? |
|
Hmm, Diogo no longer works at Docker. I don't actually know who has access to the signing key (there may be a copy in the safe). @konstruktoid who has done this in the past? |
|
Hi @justincormack, that's good to know since he was the creator (4873078) and original maintainer. He also signed and pushed the images in the past, #138. |
|
Any progress @justincormack @docker/security? |
|
A pity that this issue did not get proper attention during the 5 month since creation. We've managed to workaround it by pushing our own image built on latest state of |
|
I totally agree @illyaMs. Any progress @justincormack @docker/security? |
|
Monthly reminder, @justincormack. |
|
@konstruktoid I would like to contribute for this issue to be solved. Can you please guide me |
|
Thanks @yaminisridaran , but this is done by the Docker organization. Previously by Diogo Mónica and now ... someone else. See #405 (comment). |
|
Ping @justincormack |
|
Ping @justincormack |
|
|
|
This has caused a lot of time for me to debug (that the latest docker version is not up to date with the sources here). Maybe we should add this to the README until it is resolved? |
|
Hello @konstruktoid, |
|
CIS Docker Benchmark v1.4.0 was published yesterday and I'll will update the scripts to match that one, and then tag and release 1.3.6. I have no idea if there will be an official Docker image. I guess this comment counts as the yearly reminder. |
|
reminder for 2023 :) |
|
I think we just passed 900 workdays 🍰 |
|
Docker not being able to Docker :) |
|
yearly reminder I guess? |
|
You should be kidding o_O. |
v1.3.5 was just released; https://github.com/docker/docker-bench-security/releases/tag/v1.3.5.
The image needs to be signed by Docker, have a :latest and a version tag added to the image and published.
The text was updated successfully, but these errors were encountered: