forked from redhat-appstudio/tssc-dev-multi-ci
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Get verify-enterprise-contract task working
- Do some handling of the Rekor options - Pull in the public key from the environment var created from the credential as it is done in the build pipeline. - Fix some bash typos and syntax errors - Use a different location for the /tmp/all-images.txt since my Jenkins user was not permitted to write to /tmp. - Add a way to provide your own list of images to verify to help debug the ec verification. - Use github url for configuration instead of a named ECP cluster record See also konflux-ci/build-definitions#1240 which back-ports one of the changes introduced here to the original source of the gather-deploy-images task. Ref: https://issues.redhat.com/browse/EC-745
- Loading branch information
1 parent
1de8d1c
commit a646269
Showing
8 changed files
with
87 additions
and
36 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,10 @@ | ||
#!/bin/bash | ||
set -euo pipefail | ||
|
||
# For testing verify-enterprise-contract you can do this: | ||
# $ export MY_IMAGES_TO_VERIFY=$(hack/show-image-ref.sh) | ||
# $ bash promote-pipeline.sh | ||
|
||
IMAGE_URL=$(cat results/buildah-rhtap/IMAGE_URL) | ||
IMAGE_DIGEST=$(cat results/buildah-rhtap/IMAGE_DIGEST) | ||
echo "${IMAGE_URL%:*}@${IMAGE_DIGEST}" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters