github/linuxkit
1
0
Fork 0
mirror of https://github.com/linuxkit/linuxkit.git synced 2025-12-04 22:17:29 +00:00
Code Issues Projects Releases Wiki Activity

Use DOCKER_CONTENT_TRUST=1 when pulling library images

Browse Source 
When building the base images always test signatures.

This will be the default at some point.

Add a test that content trust is working.

Signed-off-by: Justin Cormack <justin.cormack@docker.com>
This commit is contained in:
Justin Cormack
2016-11-30 09:14:09 +00:00
parent 078f8be56c
commit ae885bd714
10 changed files with 10 additions and 10 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
alpine/base/alpine-build-go/Makefile
View File

@@ -6,7 +6,7 @@ IMAGE=alpine-build-go
default: push
hash:
docker pull $(BASE)
DOCKER_CONTENT_TRUST=1 docker pull $(BASE)
tar cf - Dockerfile | docker build --no-cache -t $(IMAGE):build -
docker run $(IMAGE):build sh -c 'cat /usr/local/go/bin/go /lib/apk/db/installed | sha1sum' | sed 's/ .*//' > hash