Data

Tools

Indexes

Applications

Experiments

Awesome

An open API service indexing awesome lists of open source software.

https://github.com/deislabs/ratify-action

Ratify Github Action
https://github.com/deislabs/ratify-action

Last synced: 11 months ago
JSON representation

Ratify Github Action

Awesome Lists containing this project

README 

          
## About

An action to run [Ratify](https://github.com/deislabs/ratify) on specified images.



## Usage

Ratify requires a signing certificate and a subject image reference.  Certificates must be present in the action workspace.  The following example shows how to do this by either checking the certificate into the repository or storing it as a Github secret.

``` yaml

jobs:

  ratify_job:

    runs-on: ubuntu-latest

    name: Verify subject

    steps:

      # needed if signing keys are checked into repo

      - name: checkout repo

        id: checkout

        uses: actions/checkout@v2

      - shell: bash

        env:

          SIGNING_CERT: ${{ secrets.SIGNING_CERT }}

        run: |

          echo "$SIGNING_CERT" > cert2.crt

      - name: Ratify verification step

        id: ratify

        uses: deislabs/ratify-action

        with:

          # comma delimited list of signing certificates

          # path relative to action working directory

          verification-certs: '.crt,cert2.crt'

          subject: '/'

      - name: Get verification results

        run: echo "Verification results are ${{ steps.ratify.outputs.verification }}"

```

## Contributing



Please see our [contributing guide](./CONTRIBUTING.md)



## Support



[Please search open issues on GitHub](https://github.com/deislabs/ratify-action/issues), and if your issue isn't already represented please [open a new one](https://github.com/deislabs/ratify-action/issues/new). The Ratify action maintainers will respond to the best of their abilities.



## Code of Conduct



Please see our [Code of Conduct](./CODE_OF_CONDUCT.md)