Add explicit check for invalid keys. This should not happen, but.

[vaikas]

• Add explicit check for invalid keys. This should not happen, but.
• Add explicit check to make sure there's a publickey, again ☝️
• Fail if config file is incorrect.

Signed-off-by: Ville Aikas vaikas@chainguard.dev

Summary

Release Note

• Add an explicit check and fail if config does not contain valid inline data. This should not happen because the keys get validated before serializing them into the configmap.
• Add an explicit check for when a KeyRef does not contain a valid PublicKey. Prior to this it would have been mistakenly flagged as not having a KeyRef, Static of KeylessRef.

Documentation

[codecov-commenter]

Codecov Report

Merging #200 (4ded3d9) into main (c0ba5b3) will increase coverage by 0.10%.
The diff coverage is 100.00%.

@@            Coverage Diff             @@
##             main     #200      +/-   ##
==========================================
+ Coverage   63.44%   63.55%   +0.10%     
==========================================
  Files          26       26              
  Lines        2421     2420       -1     
==========================================
+ Hits         1536     1538       +2     
+ Misses        807      805       -2     
+ Partials       78       77       -1     

Impacted Files	Coverage Δ
pkg/webhook/validator.go	78.20% <100.00%> (-0.04%)	⬇️
pkg/apis/config/image_policies.go	73.33% <0.00%> (+6.66%)	⬆️

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.