mike-ensor
commented
4 years ago Will squash & merge when "LGTM" approval.
Closed mike-ensor closed 4 years ago
mike-ensor
commented
4 years ago Will squash & merge when "LGTM" approval.
Before: Binary Authorization is installed and the default policy is "DryRun" mode. Three attestors are already created along with their asymmetric keys and all functionality to create Attestations.
After: Attestations will be created by their respective attestors at the "build" (image creation), "quality" (staging environment signoff), "security" (post first prod, before second prod push).
Only the Java template has the new attestations added. NO change to the policy has been made, Dry Run / logging is still used.