Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add doc on sigstore policy-controller #946

Merged
merged 4 commits into from
Oct 19, 2022
Merged

Add doc on sigstore policy-controller #946

merged 4 commits into from
Oct 19, 2022

Conversation

ianlewis
Copy link
Member

@ianlewis ianlewis commented Oct 3, 2022

Fixes #491

Adds doc on using sigstore policy-controller w/ Kubernetes to verify container provenance.

Signed-off-by: Ian Lewis ianlewis@google.com

@ianlewis
Add doc on sigstore policy-controller
34d3f4d 
Signed-off-by: Ian Lewis <ianlewis@google.com>
@ianlewis
update glob for policy
a573b79 
Signed-off-by: Ian Lewis <ianlewis@google.com>
@ianlewis ianlewis mentioned this pull request Oct 4, 2022
Merged
@ianlewis
Copy link
Member Author

@laurentsimon @asraa @joshuagl friendly ping

@hectorj2f @vaikas I wrote a short example for how to use sigstore policy-controller to verify images created by our container workflow. We would kindly appreciate feedback.

laurentsimon
laurentsimon approved these changes Oct 19, 2022
View reviewed changes
Copy link
Collaborator

@laurentsimon laurentsimon left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks!

@hectorj2f
Copy link

@ianlewis Thanks for doing this 🤗 ! It looks good to me, I just let some comments in relation to the last paragraph.

@ianlewis ianlewis enabled auto-merge (squash) October 19, 2022 11:02
@ianlewis ianlewis merged commit 61d7196 into slsa-framework:main Oct 19, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@hectorj2f hectorj2f hectorj2f left review comments

@laurentsimon laurentsimon laurentsimon approved these changes

@asraa asraa Awaiting requested review from asraa

@joshuagl joshuagl Awaiting requested review from joshuagl joshuagl is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

[docs] Verification with sigstore-policy-controller
3 participants
@ianlewis @hectorj2f @laurentsimon