docker/attest-provider
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update to attest 0.1.5

Browse Source
This commit is contained in:
Jonny Stoten
2024-06-21 13:37:15 +01:00
parent 43f41f49ff
commit a950ef3b98
3 changed files with 5 additions and 5 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
go.mod
View File

@@ -3,7 +3,7 @@ module github.com/open-policy-agent/gatekeeper-external-data-provider
go 1.22.1
require (
github.com/docker/attest v0.1.5-0.20240618150600-86878482c3d9
github.com/docker/attest v0.1.5
github.com/google/go-containerregistry v0.19.2
github.com/in-toto/in-toto-golang v0.9.0
github.com/open-policy-agent/frameworks/constraint v0.0.0-20221214024800-b745745c4118

4
go.sum
View File

@@ -200,8 +200,8 @@ github.com/dimchansky/utfbom v1.1.1 h1:vV6w1AhK4VMnhBno/TPVCoK9U/LP0PkLCS9tbxHdi
github.com/dimchansky/utfbom v1.1.1/go.mod h1:SxdoEBH5qIqFocHMyGOXVAybYJdr71b1Q/j0mACtrfE=
github.com/distribution/reference v0.6.0 h1:0IXCQ5g4/QMHHkarYzh5l+u8T3t73zM5QvfrDyIgxBk=
github.com/distribution/reference v0.6.0/go.mod h1:BbU0aIcezP1/5jX/8MP0YiH4SdvB5Y4f/wlDRiLyi3E=
github.com/docker/attest v0.1.5-0.20240618150600-86878482c3d9 h1:R9vDQpPh1oMP44wMs4SdHjx1ssSqDcOZf8SDhixKLQM=
github.com/docker/attest v0.1.5-0.20240618150600-86878482c3d9/go.mod h1:SPkBhLmVwKu1XRIHITm9/1Fq80nchhyI5x2fRB5MCwU=
github.com/docker/attest v0.1.5 h1:ZJQyL9bu7k+qVyKQ2IB7315PWyK0XjXl7Lco3aRTq9U=
github.com/docker/attest v0.1.5/go.mod h1:SPkBhLmVwKu1XRIHITm9/1Fq80nchhyI5x2fRB5MCwU=
github.com/docker/cli v26.1.3+incompatible h1:bUpXT/N0kDE3VUHI2r5VMsYQgi38kYuoC0oL9yt3lqc=
github.com/docker/cli v26.1.3+incompatible/go.mod h1:JLrzqnKDaYBop7H2jaqPtU4hHvMKP+vjCwu2uszcLI8=
github.com/docker/distribution v2.8.3+incompatible h1:AtKxIZ36LoNK51+Z6RpzLpddBirtxJnzDrHLEKxTAYk=

4
pkg/handler/validate.go
View File

@@ -65,7 +65,7 @@ func validate(w http.ResponseWriter, req *http.Request) {
for _, key := range providerRequest.Request.Keys {
platform := "linux/amd64"
resolver, err := oci.NewRegistryAttestationResolver(key, platform)
src, err := oci.ParseImageSpec(key, oci.WithPlatform(platform))
if err != nil {
utils.SendResponse(nil, err.Error(), w)
return
@@ -80,7 +80,7 @@ func validate(w http.ResponseWriter, req *http.Request) {
ctx := req.Context()
debug := true
ctx = policy.WithPolicyEvaluator(ctx, policy.NewRegoEvaluator(debug))
result, err := attest.Verify(ctx, opts, resolver)
result, err := attest.Verify(ctx, src, opts)
if err != nil {
utils.SendResponse(nil, err.Error(), w)
return