Support multiple identities and tag annotations for cosign signing
Bumped pubtools-sign dependency
Support pub_reference in SignEntry which translates to –sign-container-identity for cosign
Support multiple identities and tag annotations for cosign signing
Support pub_reference in SignEntry which translates to –sign-container-identity for cosign
Ensure that unusual cosign errors are raised
Set pubtools-iib build-timeout argument based on target settings value
Sort backup items by repo
Support untagging OCI images
Update log message to show the reference with bad manifest type
Raise an error when manifest claims retry limit is reached Manifest is outdated if both old and new manifests have digests
Fixed pushing index images to wrong namespace Fixed removing index image signatures when there are no non fbc operators
Fix SBOM publishing for the ML merge workflow
Remove incompleteness_reasons field from SBOMs before publishing them
Support cosign signing for container images
Generate SBOM attestations for manifest lists
Should not call IIB if bundle is opted in fbc and targets OCP >=4.11
Instrument tracing for container push
Add option to disable sending transparency logs to rekor
End task when IIB request fails
Set AWS KMS credentials from target settings
Fix a bug where 0 IIB builds cause a push to fail
Add –check-related-images option while calling iib-add-bundles
Remove –skip-pulp argument when calling pubtools-iib
Implement workflow to push container security manifests
Support prerelease floating tag
Remove images created by cosign
Allow radas messaging address to be formatable
Support pre-release containers
Better error reporting for skopeo copy commands
Local executor for tag-docker operatoin
Trigger building index images in parallel
Make request session object per thread
Add logs for adding and removing signatures
Remove less signatures
Use hotfix tag to sign an hotfix index image
Make executor configurable
Pin bandit version
Add removing outdated signatures into task_status.jsonl
Fix race condition in parallel container pushes
Delete signatures in parallel
Verify bundles presence
Do not pass arches in IIB request
Push images to quay in multi-threads
Added support for hotfix operators
Use real task ID for tag docker signing
Get intermediate repo from build details
Remove duplicate destinations when pushing docker
Listen on specific sub topic on signing service
Fix arch of amd64 image
Return empty manifest claims when there’s nothing to sign
Fixing signing issues
Skip getting v2s1 digest for non-amd64 images
Add a timeout to all HTTP requests
Removed the option for entrypoints to send UMB messages
Fixed creating manifests for v2ch2 single arch containers
Support v2ch2 single arch containers
Support v2ch1 containers
Fix the usage of overwrite from index
Make deprecation list functionality optional
Disable sending UMB messages for taggign and untagging images
Use SSL certificates for Pyxis authentication
Remove duplicate digests when getting signatures from Pyxis
Remove return of push_docker entrypoint
Don’t raise 404 errors when deleting tags during rollback
Fix installation of ‘docker’ dependency on Python 2.6
Add hooks to declare events of interest
Create documentation
Create entrypoint for removing a Quay repo
Create entrypoint for clearing a Quay repo
Fix intermediate index image
Implement tag docker
Implement push-docker prototype
Change signing order to happen before pushing
Use intermediate index image for signing
Fix the versioning constraint of pyrsistent dependency
Fix the definition of requirements.txt, allowing installation on Python 2.6
Initial release.
Added tag image entrypoint