XML

Word

Printable

Epic Name:
Add OCI referrers support to containers/image
Blocked:
False
Blocked Reason:
None
Ready:
False
Color Status:
Not Selected
Epic Status:
To Do
Feature Link:
OCPSTRAT-453 - Sigstore runtime validation support in OpenShift
Parent Link:
OCPSTRAT-453Sigstore runtime validation support in OpenShift
Hierarchy Progress:
0
Hierarchy Progress Bar:

0% 0%

Epic Goal

Add support for pushign and fetching related artifacts through OCI referrers API in containers/image so signatures and other artifacts pushed through that mechanism could be fetched and validated.

Why is this important?

This is important so clients that push signatures through referrers API can still have their images validated.

A user pushes a signature for an image through referrers API and is able to fetch that for validation.

CI - MUST be running successfully with tests automated
Release Technical Enablement - Provide necessary release enablement details and documents.

CI - CI is running, tests are automated and merged.
Release Enablement <link to Feature Enablement Presentation>
DEV - Upstream code and tests merged: <link to meaningful PR or GitHub Issue>
DEV - Upstream documentation merged: <link to meaningful PR or GitHub Issue>
DEV - Downstream build attached to advisory: <link to errata>
QE - Test plans in Polarion: <link or reference to Polarion>
QE - Automated tests merged: <link or reference to automated tests>
DOC - Downstream documentation merged: <link to meaningful PR>

is related to

PROJQUAY-4657 Implement OCI 1.1

links to

Building towards OCI v1.1 support in cosign