Warning
uds-package-sigstore is in early alpha and is not ready for general consumption. It is currently supported as a way to sign in-toto attestations within GitLab runner.
Important
The arm64 package includes amd64 images due to lack of availability of arm64 images from upstream projects at this time. This means you can deploy the arm64 package on an arm64 kubernetes cluster, but some of the images contained in the package will require emulation (e.g., qemu or rosetta) to run properly.
This package is designed for use as part of a UDS Software Factory bundle deployed on UDS Core.
-
K3D for dev & test environments or any CNCF Certified Kubernetes Cluster for production environments.
-
UDS CLI v0.9.2 or later
| Flavor | Description | Example Creation |
|---|---|---|
| upstream | Uses upstream images within the package. | uds zarf package create . -f upstream |
Note: there is not currently a registry1 flavor as Iron Bank does not have any sigstore images yet.
The released packages can be found in ghcr.
*For local dev, this requires installing uds-cli
After installing uds-cli, for a list of available tasks that can be run in this repository execute the following command:
uds run --list
Please see the CONTRIBUTING.md