Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Call cosign sign --key #1849

Merged
merged 1 commit into from
Dec 21, 2021
Merged

Conversation

imjasonh
Copy link
Collaborator

Description

cosign sign -kms hasn't been a thing, at least in a very long time.

Current docs say cosign sign -key gcpkms://... is the thing we want.

Submitter Checklist

These are the criteria that every PR should meet, please check them off as you
review them:

  • Includes unit tests
  • Adds integration tests if needed.

See the contribution guide for more details.

Reviewer Notes

  • The code flow looks good.
  • Unit tests and or integration tests added.

Release Notes

Describe any changes here so maintainer can include it in the release notes, or delete this block.

Sign built images with a key in GCP KMS

cc @mattmoor

@imjasonh
Copy link
Collaborator Author

Even in v1.2.0, which we were using before, the flag was -key, so release signing has just never worked I guess 🤷

https://github.com/sigstore/cosign/blob/v1.2.0/cmd/cosign/cli/sign.go

@mattmoor
Copy link
Collaborator

We were on 0.2 before 😂

@mattmoor
Copy link
Collaborator

cc @priyawadhwa

Copy link
Collaborator

@priyawadhwa priyawadhwa left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

💯

@imjasonh imjasonh merged commit 710650d into GoogleContainerTools:master Dec 21, 2021
gcalmettes pushed a commit to gcalmettes/kaniko that referenced this pull request Dec 24, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants