Policy Controller

Kubernetes webhook for configuring admission policies.

(TODO: vaikas) Update this README

ClusterImagePolicy Testing

This repo includes a policy-tester tool which enables checking a policy against various images.

In the root of this repo, run the following to build:

make policy-tester

Then run it pointing to a YAML file containing a ClusterImagePolicy, and an image to evaluate the policy against:

(set -o pipefail && \
    ./policy-tester \
        --policy=test/testdata/policy-controller/tester/cip-public-keyless.yaml \
        --image=ghcr.io/sigstore/cosign/cosign:v1.9.0 | jq)

Security

Should you discover any security issues, please refer to sigstores security process

Name		Name	Last commit message	Last commit date
Latest commit History 1,452 Commits
.github		.github
cmd		cmd
config		config
hack		hack
images		images
pkg		pkg
release		release
test		test
third_party/VENDOR-LICENSE		third_party/VENDOR-LICENSE
.gitattributes		.gitattributes
.gitignore		.gitignore
.golangci.yml		.golangci.yml
.goreleaser.yaml		.goreleaser.yaml
.ko.yaml		.ko.yaml
CHANGELOG.md		CHANGELOG.md
CODEOWNERS		CODEOWNERS
CODE_OF_CONDUCT.md		CODE_OF_CONDUCT.md
COPYRIGHT.txt		COPYRIGHT.txt
LICENSE		LICENSE
Makefile		Makefile
README.md		README.md
go.mod		go.mod
go.sum		go.sum

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Policy Controller

ClusterImagePolicy Testing

Security

About

Releases

Packages

Languages

License

wlynch/sigstore-policy-controller

Folders and files

Latest commit

History

Repository files navigation

Policy Controller

ClusterImagePolicy Testing

Security

About

Resources

License

Code of conduct

Stars

Watchers

Forks

Releases

Packages 0

Languages

Packages