Skip to content
This repository has been archived by the owner on Feb 6, 2024. It is now read-only.

Commit

Permalink
fix: specify image name in policy.json (blue-build#176)
Browse files Browse the repository at this point in the history 
There was talk on the discord about not being able to pull in images with podman because the signing policy included *every* image inside of the user's ghcr account. Which means that images not signed with the same key won't be able to be pulled down
  • Loading branch information
@gerblesh @c0deplayer
gerblesh authored and c0deplayer committed Oct 7, 2023
1 parent d9b1459 commit aa491a3
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion config/scripts/signing.sh
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,7 +11,7 @@ cp /usr/share/ublue-os/cosign.pub /usr/etc/pki/containers/"$IMAGE_NAME".pub
FILE=/usr/etc/containers/policy.json

yq -i -o=j '.transports.docker |=
{"'"$IMAGE_REGISTRY"'": [
{"'"$IMAGE_REGISTRY"'/'"$IMAGE_NAME"'": [
{
"type": "sigstoreSigned",
"keyPath": "/usr/etc/pki/containers/'"$IMAGE_NAME"'.pub",
Expand Down

0 comments on commit aa491a3

Please sign in to comment.