Pour tout problème contactez-nous par mail : support@froggit.fr | La FAQ :grey_question: | Rejoignez-nous sur le Chat :speech_balloon:

Skip to content
Snippets Groups Projects
Commit 36fab8ae authored by Benoît's avatar Benoît
Browse files

Update container/sign.yaml

parent 289f7e36
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 1 addition and 1 deletion
container/sign.yaml
+ 1
1
View file @ 36fab8ae
...@@ -26,7 +26,7 @@ include: ...@@ -26,7 +26,7 @@ include:
echo "Scanning image digest ${digest}" echo "Scanning image digest ${digest}"
skopeo inspect docker://${digest} skopeo inspect docker://${digest}
trivy image --output /tmp/image.sbom --format cosign-vuln --ignore-unfixed --severity HIGH,CRITICAL ${digest} trivy image --output /tmp/image.sbom --format cosign-vuln --ignore-unfixed --severity HIGH,CRITICAL ${digest}
cosign attest -y --key hashivault://cosign --predicate /tmp/image.sbom ${digest} cosign attest -y --key hashivault://cosign --predicate /tmp/image.sbom --type=vuln ${digest}
cosign attach sbom --sbom /tmp/image.sbom ${digest} cosign attach sbom --sbom /tmp/image.sbom ${digest}
done done
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment

Froggit est fièrement fabriqué avec amour par Lydra avec des Logiciels Libres et hébergé en France chez Scaleway | Status du service