[Enhancement] Verify Image Rules: Ignoring Tlog Documentation Update

[DogukanK]

Description

The example on the website for disabling tlog verification check is out of date, it should be updated.

error: error validating "image-policy.yaml": error validating data: ValidationError(ClusterPolicy.spec.rules[1].verifyImages[0].attestors[0].entries[0].keys.rekor): unknown field "ignoreTlog" in io.kyverno.v1.ClusterPolicy.spec.rules.verifyImages.attestors.entries.keys.rekor; if you choose to ignore these errors, turn validation off with --validate=false

To disable the check, the field must be completely removed as it said in the API reference

Rekor provides configuration for the Rekor transparency log service. If the value is nil, Rekor is not checked. If an empty object is provided the public instance of Rekor (https://rekor.sigstore.dev/) is used.

Slack discussion

No response

[welcome[bot]]

Thanks for opening your first issue here! Be sure to follow the issue template!

[DogukanK]

I suspect that it was not the documentation, actually, the API reference is out of date.

After the 1.10 release new verification types are added to the package. https://github.com/kyverno/kyverno/blob/release-1.10/api/kyverno/v1/image_verification_types.go#L175