Skip to content

seanconroy2021/ec-cli

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2,284 Commits
.github
.github
 
 
.tekton
.tekton
 
 
.vscode
.vscode
 
 
acceptance
acceptance
 
 
cmd
cmd
 
 
docs
docs
 
 
features
features
 
 
hack
hack
 
 
internal
internal
 
 
pkg/schema
pkg/schema
 
 
reference-antora-extension
reference-antora-extension
 
 
tasks
tasks
 
 
tekton-task-antora-extension
tekton-task-antora-extension
 
 
tools
tools
 
 
.gitignore
.gitignore
 
 
.golangci.yaml
.golangci.yaml
 
 
.pre-commit-config.yaml
.pre-commit-config.yaml
 
 
.tektonlintrc.yaml
.tektonlintrc.yaml
 
 
.tool-versions
.tool-versions
 
 
Dockerfile
Dockerfile
 
 
LICENSE
LICENSE
 
 
Makefile
Makefile
 
 
README.md
README.md
 
 
codecov.yml
codecov.yml
 
 
go.mod
go.mod
 
 
go.sum
go.sum
 
 
main.go
main.go
 
 
package-lock.json
package-lock.json
 
 
package.json
package.json
 
 

Repository files navigation

ec a command line client for evaluating the Enterprise Contract

The ec tool is used to evaluate Enterprise Contract policies for Software Supply Chain. Various sub-commands can be used to assert facts about an artifact such as:

  • Validating container image signature
  • Validating container image provenance
  • Evaluating Enterprise Contract policies over the container image provenance
  • Fetching artifact authorization

Consult the documentation for available sub-commands, descriptions and examples of use.

Building

Run make build from the root directory and use the dist/ec executable, or run make dist to build for all supported architectures.

Testing

Run make test to run the unit tests, and make acceptance to run the acceptance tests.

Linting

Run make lint to check for linting issues, and make lint-fix to fix linting issues (formatting, import order, ...).

Demo

Run hack/demo.sh to evaluate the policy against images that have been built ahead of time.

To regenerate those images, say in case of change in the attestation data, run hack/rebuild.sh.

Troubleshooting

The --debug parameter enables debug logging. Setting EC_DEBUG environment variable can be set to prevent deletion of temporary ec-work-* directories so that the attestations, policy and data files can be examined.

About

Enterprise Contract command line interface

enterprisecontract.dev/docs/ec-cli/main/index.html

Resources

Readme

License

Apache-2.0 license
Activity

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Go 84.4%
  • Gherkin 7.4%
  • Shell 4.6%
  • Open Policy Agent 1.5%
  • Makefile 1.4%
  • JavaScript 0.5%
  • Dockerfile 0.2%