Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Add doc on sigstore policy-controller #946

Merged
merged 4 commits into from
Oct 19, 2022

Conversation

ianlewis
Copy link
Member

@ianlewis ianlewis commented Oct 3, 2022

Fixes #491

Adds doc on using sigstore policy-controller w/ Kubernetes to verify container provenance.

Signed-off-by: Ian Lewis [email protected]

Signed-off-by: Ian Lewis <[email protected]>
@ianlewis ianlewis mentioned this pull request Oct 4, 2022
@ianlewis
Copy link
Member Author

@laurentsimon @asraa @joshuagl friendly ping

@hectorj2f @vaikas I wrote a short example for how to use sigstore policy-controller to verify images created by our container workflow. We would kindly appreciate feedback.

Copy link
Collaborator

@laurentsimon laurentsimon left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, thanks!

@hectorj2f
Copy link

@ianlewis Thanks for doing this 🤗 ! It looks good to me, I just let some comments in relation to the last paragraph.

@ianlewis ianlewis enabled auto-merge (squash) October 19, 2022 11:02
@ianlewis ianlewis merged commit 61d7196 into slsa-framework:main Oct 19, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

[docs] Verification with sigstore-policy-controller
3 participants