v0.20.0
Installation and signature verification
Verify checksums file signature
Install cosign on your system https://docs.sigstore.dev/system_config/installation/
The checksums file provided within the artifacts attached to this release is signed using Cosign with GitHub OIDC. To validate the signature of this file, run the following commands:
# Download the checksums file, certificate, and signature
curl -LO https://github.com/carvel-dev/secretgen-controller/releases/download/v0.20.0/checksums.txt
curl -LO https://github.com/carvel-dev/secretgen-controller/releases/download/v0.20.0/checksums.txt.pem
curl -LO https://github.com/carvel-dev/secretgen-controller/releases/download/v0.20.0/checksums.txt.sig
### Verify the checksums file
cosign verify-blob checksums.txt --certificate checksums.txt.pem --signature checksums.txt.sig --certificate-identity-regexp=https://github.com/carvel-dev --certificate-oidc-issuer=https://token.actions.githubusercontent.com Installation of secretgen-controller
secretgen-controller can be installed by using kapp
kapp deploy -a sg -f https://github.com/carvel-dev/secretgen-controller/releases/v0.20.0/download/release.ymlor by using kubectl
kubectl deploy -f https://github.com/carvel-dev/secretgen-controller/releases/v0.20.0/download/release.ymlContainer Images
secretgen-controller and secretgen-controller-package-bundle images are available in Github Container Registry.
OCI Image URLs
- ghcr.io/carvel-dev/secretgen-controller@sha256:f944d4ba6f68a917a6a5f2a4b1a02facec98dea67ff6db5cfea9792827b60850
- ghcr.io/carvel-dev/secretgen-controller-package-bundle@sha256:cd90affea3b3557f8a3b1588bf2bbe9e462afde37b5377728a722a2e0a11d8d4
Verify container image signature
The container images are signed using Cosign with GitHub OIDC. To validate the signature of OCI images, run the following commands:
# Verifying secretgen-controller image
cosign verify ghcr.io/carvel-dev/secretgen-controller@sha256:f944d4ba6f68a917a6a5f2a4b1a02facec98dea67ff6db5cfea9792827b60850 --certificate-identity-regexp=https://github.com/carvel-dev --certificate-oidc-issuer=https://token.actions.githubusercontent.com -o text
# Verifying secretgen-controller-package-bundle image
cosign verify ghcr.io/carvel-dev/secretgen-controller-package-bundle@sha256:cd90affea3b3557f8a3b1588bf2bbe9e462afde37b5377728a722a2e0a11d8d4 --certificate-identity-regexp=https://github.com/carvel-dev --certificate-oidc-issuer=https://token.actions.githubusercontent.com -o text✨ What's new
- Refactored GH workflow by @ankitsny in #542
- Update dependabot checks by @joaopapereira in #552
- Bump github.com/cloudfoundry/config-server by @dependabot
- CVEs fixes with golang bump to 1.24.10 by @CodesbyUnnati in #705
- Skip merging docker config with no auth data by @devanshuVmware in #709
New Contributors
- @CodesbyUnnati made their first contribution in #705
Full Changelog: v0.19.2...v0.20.0
📂 Files Checksum
ce2b1065fa8d0afba99a199da418c2f89fd3129e150054c0c69882cddbc8341f ./release.yml
76c6cb4d766f27871ec89c27b4aa612124af0234a35d60174eebec0662252349 ./package.yml
8f185deaa02964663bc3cedcb7c0af46151676e7c2abc2b69ff04178f87f28fe ./package-metadata.yml
Contributors
joaopapereira, ankitsny, and 3 other contributors