We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Description
When using cosign sign with COSIGN_REPOSITORY set and attempting to sign an image in ECR, the signature is pushed without tag.
cosign sign
COSIGN_REPOSITORY
Example invocation:
COSIGN_REPOSITORY=image_signatures cosign sign -key me.key <account_id>.dkr.ecr.us-west-2.amazonaws.com/<image>:<tag>
The signature gets pushed to the proper repo, although the <sha>.sig tag is stripped.
<sha>.sig
More info It looks like DestinationRef() in pkg/cosign/upload.go strips the tag when assembling the final URL.
DestinationRef()
The text was updated successfully, but these errors were encountered:
Successfully merging a pull request may close this issue.
Description
When using
cosign signwithCOSIGN_REPOSITORYset and attempting to sign an image in ECR, the signature is pushed without tag.Example invocation:
The signature gets pushed to the proper repo, although the
<sha>.sigtag is stripped.More info
It looks like
DestinationRef()in pkg/cosign/upload.go strips the tag when assembling the final URL.The text was updated successfully, but these errors were encountered: