-
Notifications
You must be signed in to change notification settings - Fork 2.2k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
develop Kustomize plugin to sign images within the manifests using cosign tool #4217
Comments
@developer-guy: This issue is currently awaiting triage. SIG CLI takes a lead on issue triage for this repo, but any Kubernetes member can accept issues by applying the The Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
I'm glad to hear your interest in extending Kustomize! Please note that all extension mechanisms are still in alpha, and Go plugins are currently slated for deprecation because of the issues described in the docs. If you move forward with this extension, I would encourage you to build it as a container-based KRM function and help us improve that extension development experience with any feedback you may have. You can find more information on the vision for Kustomize extensions in this provisional KEP: kubernetes/enhancements#2953. Since this would be an extension, I don't think we need to keep a tracking issue open on this repo. Please reopen if I've misunderstood. |
@KnVerey: Closing this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
Is your feature request related to a problem? Please describe.
It is not related to a problem, it is more like a new feature request.
Describe the solution you'd like
Recently, I came across a git repository called sopsencodedsecrets. Then, I searched for
Kustomize
plugins and realized that it is easy to develop plugins using Go for extendingKustomize
1. So, I'm proposing a new plugin calledsign-with-cosign-plugin
which helps us to sign all the images within the manifest files for Deployment, DaemonSet, Pod, etc by usingcosign
2.Additional context
We (w/@Dentrax @erkanzileli) are the volunteers to do this issue as well.
Footnotes
Extending Kustomize with Go Plugins ↩
cosign ↩
The text was updated successfully, but these errors were encountered: