Add Sigstore integration to nocode

This policy will prevent nocode from running unless it's been signed by nokey
2024-06-20 02:32:47 +02:00 · 2022-10-18 15:51:53 -04:00 · 2022-10-18 15:51:53 -04:00 · 8065218727
commit 8065218727
parent 6c073b08f7
1 changed files with 11 additions and 0 deletions
--- a/11
+++ b/11
@ -0,0 +1,11 @@
+apiVersion: policy.sigstore.dev/v1beta1
+kind: ClusterImagePolicy
+metadata:
+  name: nocode-nopolicy-nokey-noproblem
+spec:
+  images:
+  - glob: "**"
+  - key:
+        data: |
+          -----BEGIN PUBLIC KEY-----
+          -----END PUBLIC KEY-----