PoC for Docker Content Trust

Description

Details are given at: https://issues.opennms.org/browse/NMS-13163?focusedCommentId=62672&page=com.atlassian.jira.plugin.system.issuetabpanels%3Acomment-tabpanel#comment-62672

Acceptance / Success Criteria

None

Lucidchart Diagrams

Activity

Stefan Wachter May 12, 2021 at 10:07 AM

After discussions it was decided to store both, the private key and the passphrase of the image signer in the circle environment. A separate threat modelling activity will be done to decide on credentials management.

Stefan Wachter May 12, 2021 at 10:03 AM

A branch of the opennms-base-container was created that pushes signed Centos, OpenJdk, and Maven images to the opennmsdcttest GitHub organization.

Fixed

Details
Assignee
Stefan Wachter
Reporter
Stefan Wachter
Sprint
None
Fix versions
28.0.0
Priority
Minor

PagerDuty

Created May 5, 2021 at 1:43 PM

Updated May 26, 2021 at 12:23 PM

Resolved May 26, 2021 at 12:23 PM

PoC for Docker Content Trust

Description

Acceptance / Success Criteria

Lucidchart Diagrams

Activity

Stefan Wachter May 12, 2021 at 10:07 AM

Stefan Wachter May 12, 2021 at 10:03 AM

DetailsAssigneeStefan WachterStefan WachterReporterStefan WachterStefan WachterSprintNone+1Fix versions28.0.0PriorityMinor

Details

Assignee

Reporter

Sprint

Fix versions

Priority

PagerDutyPagerDuty Incident

PagerDuty

Details
Assignee
Stefan Wachter
Reporter
Stefan Wachter
Sprint
None
Fix versions
28.0.0
Priority
Minor

PagerDuty