ko
ko copied to clipboard
ko-build
Build and deploy Go applications
See https://github.com/distroless/actions/blob/main/apko-snapshot/action.yaml#L98-L105 for example -- this runs `trivy` on a newly built container image, which produces a SARIF file. Then the next step `cosign attest`s that scan result onto the...
Generate non-forgeable provenance, as proposed in https://github.com/google/ko/issues/729 Below is an example of what the provenance looks like: ``` { "_type": "https://in-toto.io/Statement/v0.1", "predicateType": "https://slsa.dev/provenance/v0.2", "subject": [ { "name": "ko-copy_5.0.1_Windows_arm64.tar.gz", "digest": {...
Fixes #699 If the user specifies an image manifest and its platform does not match the platforms specified or defaulted, error out. With a `.ko.yaml` specifying the linux/amd64 image manifest...
Based on a Twitter [conversation](https://twitter.com/mattomata/status/1498527641762091016?s=20&t=BofE5KKl1XeD5cMRSToPuQ), it was raised whether `KO_DOCKER_REPO` should also be a configuration option in `.ko.yaml` (mainly for consistency purposes). IMHO since this is not a build but...
If you have a `defaultBaseImage` that is an image manifest rather than a image index, it seems that ko will just build for that image's platform, happily ignoring whatever you...
We can use [bubbletea](https://github.com/charmbracelet/bubbletea) from https://charm.sh to give a layer of paint to our CLI. In all cases, using the interactive TUI should be optional, and backward-compatible. If you're invoking...
⚠️ I'm not sure this is a _good_ idea, but it's something I thought of, and I'm curious for feedback. Basing images on distroless/static is great (don't get me started),...
Signed-off-by: Batuhan Apaydın Fixes #460 Is that what you thought? @imjasonh
Signed-off-by: Batuhan Apaydın experimental try out with slsa 3 provenance generation for ko project cc: @imjasonh @ianlewis > https://github.com/developer-guy/ko/releases/tag/v0.0.0
## Bug Report When running `build`, `resolve`, or `apply` with `--push=false`, the `-t` or `--tags` and `--tag-only` options are not respected. ### Expected Behavior When `-t` or `--tags` option is...
