Loading...

XML

Word

Printable

Type: Epic
Resolution: Unresolved
Priority: Major
Fix Version/s: None
Affects Version/s: None
Component/s: Tekton Ecosystem
Labels:
- 2024Q1
- refinable

Epic Name:
Tekton Ecosystem Security Infrastructure
Blocked:
False
Blocked Reason:
None
Ready:
False
Epic Status:
To Do
Feature Link:
SECFLOWOTL-75 - Red Hat Tekton catalog GA
Hierarchy Progress Bar:

67% To Do, 0% In Progress, 33% Done
Intelligence Requested:
Market:

SFDC Cases Links:
SFDC Cases Counter:
SFDC Cases Open:

This epics is 3 parts:

Enforce that the tekton resources we pull are coming with attestation and sbom, as well as signed.
Enhance our tooling (catalog-cd) to help users contributing their task to do that on release (and provide GitHub actions, ...)
Enforce that the images being used are from trusted registries.

is depended on by

SRVKP-3815 R&D Figure out how to include tests as part of attestations

To Do

Assignee:: Unassigned

Reporter:: Vincent Demeester

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2023/10/27 8:37 AM

Updated:: 2024/01/04 7:13 AM