v0.17.2
Installation and signature verification
Verify checksums file signature
Install cosign on your system https://docs.sigstore.dev/system_config/installation/
The checksums file provided within the artifacts attached to this release is signed using Cosign with GitHub OIDC. To validate the signature of this file, run the following commands:
# Download the checksums file, certificate, and signature
curl -LO https://github.com/carvel-dev/secretgen-controller/releases/download/v0.17.2/checksums.txt
curl -LO https://github.com/carvel-dev/secretgen-controller/releases/download/v0.17.2/checksums.txt.pem
curl -LO https://github.com/carvel-dev/secretgen-controller/releases/download/v0.17.2/checksums.txt.sig
### Verify the checksums file
cosign verify-blob checksums.txt --certificate checksums.txt.pem --signature checksums.txt.sig --certificate-identity-regexp=https://github.com/carvel-dev --certificate-oidc-issuer=https://token.actions.githubusercontent.com
Installation of secretgen-controller
secretgen-controller can be installed by using kapp
kapp deploy -a sg -f https://github.com/carvel-dev/secretgen-controller/releases/v0.17.2/download/release.yml
or by using kubectl
kubectl deploy -f https://github.com/carvel-dev/secretgen-controller/releases/v0.17.2/download/release.yml
Container Images
secretgen-controller and secretgen-controller-package-bundle images are available in Github Container Registry.
OCI Image URLs
- ghcr.io/carvel-dev/secretgen-controller@sha256:194ffb4e810a0013c2301c2806b345b84bf0c2c00976c84b60be310976988814
- ghcr.io/carvel-dev/secretgen-controller-package-bundle@sha256:d877ec6bec4c734de87294e8904865bf52fbb150238e1c1fc8dbf72c0efbfb51
Verify container image signature
The container images are signed using Cosign with GitHub OIDC. To validate the signature of OCI images, run the following commands:
# Verifying secretgen-controller image
cosign verify ghcr.io/carvel-dev/secretgen-controller@sha256:194ffb4e810a0013c2301c2806b345b84bf0c2c00976c84b60be310976988814 --certificate-identity-regexp=https://github.com/carvel-dev --certificate-oidc-issuer=https://token.actions.githubusercontent.com -o text
# Verifying secretgen-controller-package-bundle image
cosign verify ghcr.io/carvel-dev/secretgen-controller-package-bundle@sha256:d877ec6bec4c734de87294e8904865bf52fbb150238e1c1fc8dbf72c0efbfb51 --certificate-identity-regexp=https://github.com/carvel-dev --certificate-oidc-issuer=https://token.actions.githubusercontent.com -o text
What's Changed
- Set seccompProfile to RuntimeDefault for secretgen-controller container by @rohitagg2020 in #520
- Update Copyright Headers by @prashantrewar in #522
- Bumping go version to 1.22.2 by @rcmadhankumar in #523
- Bump setup action v2, update kctrl and add --name flag to docker builds by @rcmadhankumar in #527
New Contributors
- @prashantrewar made their first contribution in #522
Full Changelog: v0.17.0...v0.17.2
📂 Files Checksum
a7289bc892cb70787ce45ced33e135711b9455709c4c4e35aaf547749eb509e3 ./release.yml
ac2bca91c2aecd28a8c8a244f8bb65706f9ef41615e7060313b8e411f80e3a2b ./package.yml
8f185deaa02964663bc3cedcb7c0af46151676e7c2abc2b69ff04178f87f28fe ./package-metadata.yml