-
Notifications
You must be signed in to change notification settings - Fork 4.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
enable notary v2 policy checker #18927
Conversation
Codecov Report
@@ Coverage Diff @@
## main #18927 +/- ##
==========================================
+ Coverage 67.40% 70.57% +3.16%
==========================================
Files 986 750 -236
Lines 107983 94816 -13167
Branches 2698 0 -2698
==========================================
- Hits 72786 66912 -5874
+ Misses 31300 24299 -7001
+ Partials 3897 3605 -292
Flags with carried forward coverage won't be shown. Click here to find out more.
|
958b985
to
7567e68
Compare
@@ -44,42 +43,56 @@ func Cosign() func(http.Handler) http.Handler { | |||
return err | |||
} | |||
|
|||
// If cosign policy enabled, it has to at least have one cosign signature. | |||
// If signature policy enabled, it has to at least have one cosign signature. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
"If signature policy enabled, it has to at least have one
cosign signature
. "
The cosign signature
statement here in the comment seems to be not correct/accurate.
add notary v2 pull policy, when it enables, the artifact cannot be pull without the notation signature. Signed-off-by: wang yan <wangyan@vmware.com>
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
lgtm
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
lgtm
1. for goharbor#18927 Signed-off-by: AllForNothing <sshijun@vmware.com>
1. for goharbor#18927 Signed-off-by: AllForNothing <sshijun@vmware.com>
1. for goharbor#18927 Signed-off-by: AllForNothing <sshijun@vmware.com>
1. for #18927 Signed-off-by: AllForNothing <sshijun@vmware.com>
add notary v2 pull policy, when it enables, the artifact cannot be pull without the notation signature.
Thank you for contributing to Harbor!
Comprehensive Summary of your change
Issue being fixed
Fixes #(issue)
Please indicate you've done the following: