Loading...

XML

Word

Printable

Details

Type: Story
Resolution: Unresolved
Priority: Critical
Fix Version/s: None
Affects Version/s: None
Component/s: Tekton Ecosystem
Labels:
- Refinement
- groomable

Story Points:
3
Epic Link:
Tekton Ecosystem external Launch
Blocked:
False
Blocked Reason:
None
Ready:
False

Original story points:
5

SFDC Cases Counter:
SFDC Cases Links:

Description

Based on https://docs.google.com/document/d/1K8936oehsM6tftT2WHWHanS7GkyyoGgAYDAlCjvHV7k/edit#

When pulling a Task from an external repository (a release), we need to enforce some rules and some checks. This issue is to track the work on defining these.

(e.g.) The Task is shipped as a bundle, and signed (cosign) – can verify the signature
Some simple test are provided
Provenance is generated and valid (define this better)

Look into the following to get some thoughts and ideas:

Attachments

Activity

People

Assignee:: Vincent Demeester

Reporter:: Vincent Demeester

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 2023/03/17 5:10 PM

Updated:: 2024/02/14 9:59 AM