Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Integrate Notation to sign Ballerina Images #4637

Merged
merged 2 commits into from
Jul 5, 2023
Merged

Integrate Notation to sign Ballerina Images #4637

merged 2 commits into from
Jul 5, 2023

Conversation

Miranlfk
Copy link
Contributor

@Miranlfk Miranlfk commented Jun 28, 2023
edited
Loading

Purpose

Publish the Ballerina Image to Github Container Registry and sign the Ballerina Image using Notary Project's Notation Tool.

There currently is no Official Github Action for Notation Tool, therefore I've referred to the prototype Notation Action as mentioned here. The details for the official Github Action can be tracked via this issue

Fixes #4636

Note: Secrets have been added in the workflow, the format of each secret is mentioned:
Azure Credentials for Resource login - ${{ secrets.AZURE_CREDENTIALS }} - setup credentials as follows
Signing Key Name -${{ secrets.AZURE_KEY_NAME }} - <KEY_NAME>
Certificate ID - ${{ secrets.AZURE_KEY_ID }} - https://<key_vault_name>.vault.azure.net/certificates/xxxxxx/xxxxxxxxxxxxxxxxxxxxxxx

@sonarcloud
Copy link

sonarcloud bot commented Jun 28, 2023

Kudos, SonarCloud Quality Gate passed!    Quality Gate passed

Bug A 0 Bugs
Vulnerability A 0 Vulnerabilities
Security Hotspot A 0 Security Hotspots
Code Smell A 0 Code Smells

No Coverage information No Coverage information
0.0% 0.0% Duplication

@udda1996 udda1996 added this pull request to the merge queue Jul 5, 2023
Merged via the queue into ballerina-platform:master with commit 9b85d1f Jul 5, 2023
@udda1996 udda1996 mentioned this pull request Jul 5, 2023
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sm1990 sm1990 sm1990 approved these changes

@udda1996 udda1996 udda1996 approved these changes

@hevayo hevayo Awaiting requested review from hevayo

@keizer619 keizer619 Awaiting requested review from keizer619 keizer619 is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Integrate Notation by Notary Project to sign Ballerina Images
3 participants
@Miranlfk @sm1990 @udda1996