-
Right now, we have kind of hybrid CRD structure. You have two options how to deploy:
1) You can create [securesign](https://github.com/securesign/secure-sign-operator/blob/main/api/v1alpha1/secures…
-
Hello, I have a project in Gitlab which is building, signing and verifying (via Cosign) some Fedora Silverblue images[1] following the recommended documentation[2].
In the CI pipeline, the signed i…
-
**Description**
My workflow file was using v1.2.3 and it failed to sign the dists with the import error below. I fixed it by changing the version to v2.1.1.
I'm making this issue because I copied…
-
Ensure that images for the operator are those images we expect to use for TP2
-
## Description
Hi there! 👋🏻
I don't know why my Scorecard workflow failed. See https://github.com/kommitters/editorjs-tooltip/actions/runs/3333046579/jobs/5514733112
```
2022/10/26 22:50:17 e…
-
### Is your feature request related to a problem? Please describe.
I'd like to be able to verify that the images we are consuming from `otel/opentelemetry-collector-contrib` on DockerHub were produce…
-
I think we need to start adding support for delegations here so we can let other projects reuse this!
-
Multiple reviewers can help for a number of reasons:
* Provide a different perspective
* Reduce the impact of single account compromise
This can be enforced by [Github](https://github.blog/2018-0…
-
Currently, we use the `phase` field on each CR. In case of error, there is no message on why it happened.
We should take advantage from using [conditions](https://sdk.operatorframework.io/docs/build…
-
Deployment of releases has some rough edges.
## Details
### Signing binaries
Binaries built with Go cannot be executed easily across Apple environments due to the lack of signatures. We need to set…