add chart provenance verification to e2e

deis / jenkins-jobs

DSL representations of Jenkins jobs for Deis

MIT License

27 stars 18 forks source link

add chart provenance verification to e2e #283

Open vdice opened 8 years ago

vdice commented 8 years ago

Once we are signing our staging helm charts (workflow-dev, builder-dev, etc.), we should add a correlating verification step to the chart install in the downstream e2e job(s) along the lines of:

...
gpg --keyserver <keyserver (probably pgp.mit.edu)> --recv-keys <KEY_ID>
helm install --verify "${CHART_REPO:-${CHART}}"/"${CHART}"
...

Cryptophobia commented 6 years ago

This issue was moved to teamhephy/jenkins-jobs#10