Expose Cosign Public Key (!218) · Merge requests · Sylva-projects / sylva-elements / diskimage-builder

Pierrick Seite requested to merge cosign into main May 28, 2024

This MR exposes the cosign public key expected to be used to verify the signature of the images. It avoids the verifier to access the public key via the CI/CD variables, so requiring an access token with high privileges. In other words, this MR makes the public key really public...

Edited May 29, 2024 by Thomas Morin

Expose Cosign Public Key

Merge request reports