Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Sign the OCI artifact with cosign #65

Closed
maxgio92 opened this issue May 25, 2023 · 3 comments · Fixed by #66
Closed

Sign the OCI artifact with cosign #65

maxgio92 opened this issue May 25, 2023 · 3 comments · Fixed by #66
Assignees
@maxgio92
Labels
kind/feature New feature or request
Milestone
falco-0.36-rules

Comments

@maxgio92
Copy link
Member

Motivation

This feature request is part of a work which aims to improve the security of the Falco artifacts supply chain.

Feature

Introduce a step in the release pipeline which signs the rules OCI artifact built, with cosign.

Alternatives

Use different tools, like Notary, that provide different format, even though supporting same storage type (OCI Artifact).

Additional context

In detail, of signatures of Falco OCI artifacts, you can read here.
@maxgio92 maxgio92 added the kind/feature New feature or request label May 25, 2023
@maxgio92 maxgio92 mentioned this issue May 25, 2023
Merged
@maxgio92 maxgio92 mentioned this issue Jun 30, 2023
Merged
@incertum
Copy link
Contributor

incertum commented Jul 3, 2023

@maxgio92 I see lots of PRs open ❤️ , what do you need from us to get them over the finish line? I am probably not the right person to review them, but wanted to ask anyways 🙃

@maxgio92
Copy link
Member Author

maxgio92 commented Jul 3, 2023
edited
Loading

Hey @incertum, I think TL;DR the order is:

@LucaGuerra LucaGuerra added this to the falco-rules-next milestone Jul 7, 2023
@maxgio92
Copy link
Member Author

/assign

@github-project-automation github-project-automation bot moved this from Todo to Done in Falco Roadmap Jul 18, 2023
@maxgio92 maxgio92 mentioned this issue Sep 20, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@maxgio92 maxgio92

Labels
kind/feature New feature or request
Projects
Falco Roadmap
Archived in project
Falco Supply Chain Security
Status: Done
Milestone
falco-0.36-rules
Development

Successfully merging a pull request may close this issue.

Introduce OCI artifacts signatures maxgio92/falco-rules
3 participants
@maxgio92 @incertum @LucaGuerra