Closed viccuad closed 3 weeks ago
Failing policies:
Turns out that psa-label-enforcer-policy
, persistentvolumeclaim-storageclass-policy
where failing because of changes related to https://github.com/kubewarden/kubewarden-controller/issues/838 but were not discovered until release as we don't run e2e tests for Rust policies in CI.
Opened PRs to them and https://github.com/kubewarden/github-actions/pull/134 to fix that.
This leaves verify-image-signatures-policy
, investigating it.
Closing. verify-image-signatures fails with kwctl 1.15 onwards, when kwctl tries to fetch the fulcio certs from the TUF repo. This needs to be properly tracked in kwctl, and checked against sigstore-rs.
After merging today's bot PRs,
some of which included serde bumps, some policies are failing on the release job when running e2e tests.Acceptance criteria