Feat: Use Sigstore Cosign to sign docker images and push signature 69/72469/8 v0.89.6
authorJessica Wagantall <jwagantall@linuxfoundation.org>
Tue, 12 Dec 2023 23:25:36 +0000 (15:25 -0800)
committerJessica Wagantall <jwagantall@linuxfoundation.org>
Thu, 14 Dec 2023 17:37:21 +0000 (09:37 -0800)
commiteffb1b53b942658210b4e408030233fb822da900
tree4dfcf5c764af73c3baf436f2f084cf80aca4d8a8
parentf4b544362ab8764479ce7a4b087c67e923500963
Feat: Use Sigstore Cosign to sign docker images and push signature

In order to enable, the project needs to create their keypair and
credentials in Jenkins for cosign-password (keypair password) and
cosign-private-key.

Issue: RELENG-5014
Signed-off-by: Jessica Wagantall <jwagantall@linuxfoundation.org>
Change-Id: Ie3e73cb10445b5139417c62fb534ba883a0ad499
jjb/lf-release-jobs.yaml
releasenotes/notes/sign-images-cosign-b60035ec3e8e5c62.yaml [new file with mode: 0644]
shell/release-job.sh