1
0
Fork 0
mirror of https://github.com/imjasonh/terraform-provider-cosign-old synced 2026-07-13 19:27:27 +00:00
No description
Find a file
dependabot[bot] 20fb368bf0
Bump github.com/sigstore/policy-controller from 0.7.0 to 0.8.2
Bumps [github.com/sigstore/policy-controller](https://github.com/sigstore/policy-controller) from 0.7.0 to 0.8.2.
- [Release notes](https://github.com/sigstore/policy-controller/releases)
- [Changelog](https://github.com/sigstore/policy-controller/blob/main/CHANGELOG.md)
- [Commits](https://github.com/sigstore/policy-controller/compare/v0.7.0...v0.8.2)

---
updated-dependencies:
- dependency-name: github.com/sigstore/policy-controller
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
2023-08-10 21:41:57 +00:00
.github use Matt's tests 2023-04-25 14:41:50 -04:00
docs Feature: Implement a basic cosign_attest 2023-04-25 12:14:45 -07:00
examples/provider use new TF provider framework 2023-04-25 13:54:58 -04:00
internal/provider Feature: Implement a basic cosign_attest 2023-04-25 12:14:45 -07:00
tools Initial commit 2023-04-25 11:55:13 -04:00
.gitignore Initial commit 2023-04-25 11:55:13 -04:00
.golangci.yml Initial commit 2023-04-25 11:55:13 -04:00
.goreleaser.yml Initial commit 2023-04-25 11:55:13 -04:00
CHANGELOG.md Initial commit 2023-04-25 11:55:13 -04:00
GNUmakefile Initial commit 2023-04-25 11:55:13 -04:00
go.mod Bump github.com/sigstore/policy-controller from 0.7.0 to 0.8.2 2023-08-10 21:41:57 +00:00
go.sum Bump github.com/sigstore/policy-controller from 0.7.0 to 0.8.2 2023-08-10 21:41:57 +00:00
LICENSE Initial commit 2023-04-25 11:55:13 -04:00
main.go use new TF provider framework 2023-04-25 13:54:58 -04:00
README.md use new TF provider framework 2023-04-25 13:54:58 -04:00
terraform-registry-manifest.json Initial commit 2023-04-25 11:55:13 -04:00

Terraform Provider for cosign

🚨 This is a work in progress. 🚨

https://registry.terraform.io/providers/chainguard-dev/cosign

Usage

This provides an cosign_sign and cosign_verify resources that will sign and verify the provided images with cosign.

provider "cosign" {}

# Verify the Chainguard base image against a policy from
# github.com/sigstore/policy-controller.
data "cosign_verify" "example" {
  image  = "cgr.dev/chainguard/static:latest-glibc"

  # This can also be inlined or fetched from a URL using the "http" data source
  # check out https://github.com/chainguard-dev/policy-catalog for examples!
  policy = file("my-policy.yaml")
}

# This is simply for illustration purposes!
# see: https://github.com/ko-build/terraform-provider-ko
resource "ko_build" "image-build" {
  base_image  = data.cosign_verify.example.verified_ref
  importpath  = "..."
  repo        = var.where-to-publish
}

# Sign the produced image!
resource "cosign_sign" "example" {
  image = ko_build.image-build.image_ref
}