tagToDigest-provider

command module
v0.0.1 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Aug 15, 2021 License: MIT Imports: 14 Imported by: 0

README

Tag-to-digest provider

tagToDigest-provider is used for mutating image tag to a digest using crane.

This repo is meant for testing Gatekeeper external data feature. Do not use for production.

Installation

  • Deploy Gatekeeper with external data enabled (--enable-external-data)

  • kubectl apply -f manifest

  • kubectl apply -f policy/provider.yaml

    • Update proxyURL if it's not http://tagtodigest-provider.default:8090

  • kubectl apply -f policy/assign.yaml

Verification

  • kubectl apply -f examples/test.yaml

  • kubectl get deploy test-deployment -o yaml

    • you should see digests in image
    ...
    spec:
    containers:
    - image: gcr.io/distroless/static:nonroot@sha256:c9f9b040044cc23e1088772814532d90adadfa1b86dcba17d07cb567db18dc4e
    ...
    - image: gcr.io/distroless/static:nonroot@sha256:c9f9b040044cc23e1088772814532d90adadfa1b86dcba17d07cb567db18dc4e"
...

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Directories

Path Synopsis
pkg
keychain
Package keychain creates credentials for authenticating to container image registries.
 Package keychain creates credentials for authenticating to container image registries.

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.