hanshal101
commented
2 months ago Would like to pick up this!!!
Open dr-housemd opened 3 months ago
hanshal101
commented
2 months ago Would like to pick up this!!!
FeynmanZhou
commented
2 months ago ORAS can help you push the attestation to an OCI registry via OCI referrers API. You can try https://oras.land/docs/commands/oras_attach
hanshal101
commented
2 months ago ORAS can help you push the attestation to an OCI registry via OCI referrers API. You can try https://oras.land/docs/commands/oras_attach
Yup working on ORAS itself, thanks for the resource link.
When a user builds an OCI image and pushes an image, we do not load/push the attestations currently(attestations.jsonl file). We should push the attestation out via OCI referrers API, if possible as that looks like recommended way to do it from OCI community.
Once we solve for push, we can look into what changes are required to load it as well.