-
[memcached official image](https://github.com/docker-library/memcached/blob/master/alpine/Dockerfile) is compiled a bit different with the alpine package
In official image, memcached is configured…
-
https://github.com/chainguard-dev/melange/pull/143 adds e2e tests in CI that build all our examples, and seems to indicate the `sshfs.yaml` example fails at head:
https://github.com/chainguard-dev/…
-
After building the image filesystem, scan the `/var/lib/db/sbom` directory looking for files in the form:
- `$package.cdx` (CycloneDX)
- `$package.spdx.json` (SPDX)
These files should be includ…
-
Fingers crossed! Will check on Tuesday, November 15.
-
Feedback from empathy day:
"I think in general we should have an enforce overview and architecture overview, and a little better explanation of what each part of the onboarding steps do"
My thou…
-
The current Bazel Docker containers are being built by the RBE toolchains team, but they asked us to take this on.
We should setup some tooling and a pipeline (?) to regularly automatically build c…
-
It would be great to generate an SBOM as an artifact, maybe with Trivy?
FYI @gerardcl
-
It would be great to have a dedicated logo for the Sigstore's `policy-controller` component/project, is it planned?
It was/is not part of:
- https://blog.sigstore.dev/new-sigstore-landscape-add-yo…
-
-
feedback from empathy day:
After the creation we list the policies, and there’s only one (and if that would be the case, seems redundant). But it says A few policies will be in place in addition to…