Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supply-chain metadata from cosign
The support for the trusted_root.json target hardcodes its file name. GitHub needs a way to support custom target paths for the trusted root, so I would like to add support to customize the trusted root target filename in the TrustRoot CRD.
Description
The support for the
trusted_root.jsontarget hardcodes its file name. GitHub needs a way to support custom target paths for the trusted root, so I would like to add support to customize the trusted root target filename in theTrustRootCRD.