Batuhan Apaydın comments

Results 279 comments of


Batuhan Apaydın

Upload SBOM directly to OCI registry

yeah, SGTM, we (w/@dentrax) can make it happen if you all agree on this `attach` command. We can start working on it ASAP. Let me summarize the steps that we...

Upload SBOM directly to OCI registry

Hi folk, as @samj1912 said, syft is now capable of uploading SBOM in form of in-toto attestation format to the registries, also, there is another option like "cosign attach", but...

Upload SBOM directly to OCI registry

kindly ping

Add missing name input on the delete command

Great, thanks for your interest 🤗I'll take a look at it ASAP

ability to sign Rego policies before pushing them to the OCI registry

would you mind assigning it to us, then we can start to work on it 🤩

OPA Gatekeeper brings the cluster to an inoperable state after upgrading/restarting nodes

cc: @dentrax @f9n @necatican

exclusions based on container name in Assign CRD

cc: @dentrax @sozercan

exclusions based on container name in Assign CRD

> My understanding is that you want a way to mutate only the main container for a Pod, but not other containers that may be injected by sidecars later. Your...

generate SBOM both SPDX and Cyclone DX formats based for container images and attach em by using cosign attach

IMHO, an `--sbom` flag should cover all the things and can accept both spdx, and cyclonedx as a value. So, the command will look like the following: ```shell $ nerdctl...

generate SBOM both SPDX and Cyclone DX formats based for container images and attach em by using cosign attach

We don't have to use syft as an executable way, I've recently asked @wagoodman to give us an example of how to use syft as a Go module, thanks to...