Skip to content

v0.19.0

Latest
Latest
Compare
Choose a tag to compare
@github-actions github-actions released this 12 Dec 09:04
v0.19.0
79715d4
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

Installation and signature verification

Verify checksums file signature

Install cosign on your system https://docs.sigstore.dev/system_config/installation/

The checksums file provided within the artifacts attached to this release is signed using Cosign with GitHub OIDC. To validate the signature of this file, run the following commands:

# Download the checksums file, certificate, and signature
curl -LO https://github.com/carvel-dev/secretgen-controller/releases/download/v0.19.0/checksums.txt
curl -LO https://github.com/carvel-dev/secretgen-controller/releases/download/v0.19.0/checksums.txt.pem
curl -LO https://github.com/carvel-dev/secretgen-controller/releases/download/v0.19.0/checksums.txt.sig

### Verify the checksums file
cosign verify-blob checksums.txt --certificate checksums.txt.pem --signature checksums.txt.sig --certificate-identity-regexp=https://github.com/carvel-dev --certificate-oidc-issuer=https://token.actions.githubusercontent.com

Installation of secretgen-controller

secretgen-controller can be installed by using kapp

kapp deploy -a sg -f https://github.com/carvel-dev/secretgen-controller/releases/v0.19.0/download/release.yml

or by using kubectl

kubectl deploy -f https://github.com/carvel-dev/secretgen-controller/releases/v0.19.0/download/release.yml

Container Images

secretgen-controller and secretgen-controller-package-bundle images are available in Github Container Registry.

OCI Image URLs

  • ghcr.io/carvel-dev/secretgen-controller@sha256:b1cdf024718fb031ee3de9bc112fb047b6089f20661718727af6f0c481797a70
  • ghcr.io/carvel-dev/secretgen-controller-package-bundle@sha256:3ef895777875d4e1d122188cbfe5e41b88cd073d78e1c1600cbb0a7668b3b9ed

Verify container image signature

The container images are signed using Cosign with GitHub OIDC. To validate the signature of OCI images, run the following commands:

# Verifying secretgen-controller image
cosign verify ghcr.io/carvel-dev/secretgen-controller@sha256:b1cdf024718fb031ee3de9bc112fb047b6089f20661718727af6f0c481797a70 --certificate-identity-regexp=https://github.com/carvel-dev --certificate-oidc-issuer=https://token.actions.githubusercontent.com -o text

# Verifying secretgen-controller-package-bundle image
cosign verify ghcr.io/carvel-dev/secretgen-controller-package-bundle@sha256:3ef895777875d4e1d122188cbfe5e41b88cd073d78e1c1600cbb0a7668b3b9ed --certificate-identity-regexp=https://github.com/carvel-dev --certificate-oidc-issuer=https://token.actions.githubusercontent.com -o text

✨ What's new

Full Changelog: v0.18.0...v0.19.0

📂 Files Checksum

9a37c28edc563c6025769e64ab7c8c7e77cfb08f94638ed50d74d1d05fb0c02a  ./release.yml
48a41de87a2ff28aae562edb21f497e7d1e5d9f9d29ff437729040530ca99d10  ./package.yml
8f185deaa02964663bc3cedcb7c0af46151676e7c2abc2b69ff04178f87f28fe  ./package-metadata.yml

Contributors

devanshuVmware
Assets 8
Loading