search

chainguard-dev / cosign-ecs-verify

Lambda function for verifying signed images in ECS
Apache License 2.0
33 stars 7 forks source link

Upgrade to go-containerregistry v0.9.0 #17

Closed tstromberg closed 2 years ago

tstromberg commented 2 years ago

The latest version defaults to a newer build of docker/distribution that isn't susceptible to CVE-2021-41190, so we should probably move to it.