search

intel / trusted-certificate-issuer

Trusted Certificate Service (TCS) is a K8s service to protect signing keys using Intel's SGX technology. K8s CSR and cert-manager CR APIs are both supported. TCS also contains integration samples for Istio service mesh and Key Management Reference Application (KMRA).
Apache License 2.0
29 stars 15 forks source link

Implement full pipeline #95

Open intel-k8s-bot opened 1 year ago

intel-k8s-bot commented 1 year ago

1) Building image 2) Scanning image with Trivy during build 3) Pushing built image to GitHub container registry 4) Scanning image with CodeQL 5) Pushing to DockerHub container registry

Notes: Trivy cannot access github container registry directly because of the private scope, so the scan is implemented inside the Makefile (ref.example https://github.com/intel/afxdp-plugins-for-kubernetes).

github-advanced-security[bot] commented 1 year ago

This pull request sets up GitHub code scanning for this repository. Once the scans have completed and the checks have passed, the analysis results for this pull request branch will appear on this overview. Once you merge this pull request, the 'Security' tab will show more code scanning analysis results (for example, for the default branch). Depending on your configuration and choice of analysis tool, future pull requests will be annotated with code scanning analysis results. For more information about GitHub code scanning, check out the documentation.