-
Notifications
You must be signed in to change notification settings - Fork 503
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Honor creation timestamp for signatures again #3549
Honor creation timestamp for signatures again #3549
Conversation
Codecov ReportAttention: Patch coverage is
Additional details and impacted files@@ Coverage Diff @@
## main #3549 +/- ##
==========================================
+ Coverage 40.10% 40.45% +0.35%
==========================================
Files 155 155
Lines 10044 10078 +34
==========================================
+ Hits 4028 4077 +49
+ Misses 5530 5508 -22
- Partials 486 493 +7 ☔ View full report in Codecov by Sentry. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
lgtm
@jonjohnsonjr can you chime in on this, as you made the change originally? |
Also @imjasonh to comment |
Bumping, @imjasonh @jonjohnsonjr did you have thoughts on this? |
Can we leave the behavior currently implemented as the default, and add a feature flag to correctly set the timestamp? |
@bobcallaway I hope i got every reference where this would make sense. please double check this as the codebase is not that common to me |
dea1727
to
21ec318
Compare
d7e89f6
to
3d51e58
Compare
the ci failure seems like an infra issue? |
yes, I'm working to unblock this now. |
can you rebase this please? I think the infra issue is fixed now. |
Signed-off-by: ttrabelsi <Lerentis@users.noreply.github.com>
…behavior Signed-off-by: Tobias Trabelsi <lerentis@uploadfilter24.eu>
Signed-off-by: Tobias Trabelsi <lerentis@uploadfilter24.eu>
3d51e58
to
5a0b029
Compare
all green now. thanks for taking care of this 🎉 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
a couple nits but otherwise LGTM and will merge once fixed.
Signed-off-by: Tobias Trabelsi <lerentis@uploadfilter24.eu>
changed as requested 👍 |
* Honor creation timestamp for signatures again Signed-off-by: ttrabelsi <Lerentis@users.noreply.github.com> * setting creation timestamp behind a feature flag to preserve current behavior Signed-off-by: Tobias Trabelsi <lerentis@uploadfilter24.eu> * review feedback Signed-off-by: Tobias Trabelsi <lerentis@uploadfilter24.eu> * additional review feedback Signed-off-by: Tobias Trabelsi <lerentis@uploadfilter24.eu> --------- Signed-off-by: ttrabelsi <Lerentis@users.noreply.github.com> Signed-off-by: Tobias Trabelsi <lerentis@uploadfilter24.eu>
closes #3298
Summary
As the timestamp is part of the OCI spec it makes no sense to omit it. signatures that are pushed to an OCI registry are not immutable by default and honoring the creation timestamp will enable people to use time based cleanup policies in their registries again (as in GCP, GitLab etc.).
Release Note
Fixes null timestamp in signatures and honor creation timestamp again