* Run image should be locked to a digest in analyzed.toml (#720)
* Run image should be locked to a digest in analyzed.toml
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Use more flexible matcher for other test
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Update github actions to use cosign v1.2.0 (#708)
* Introduce new api version helpers (#705)
* Introduce new api version helpers
This makes the code a little easier to read.
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Remove comment
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix lint
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Update github actions to use cosign v1.2.0
Signed-off-by: Sambhav Kothari <skothari44@bloomberg.net>
Co-authored-by: Natalie Arellano <narellano@vmware.com>
* Add information about buildpacksio/lifecycle (#707)
* Introduce new api version helpers (#705)
* Introduce new api version helpers
This makes the code a little easier to read.
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Remove comment
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix lint
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Add information about buildpacksio/lifecycle
This information should be copied to the Docker Hub repo "about" section.
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Small fix
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Small fix
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Update steps for verifying SBOM
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Update the README for platform 0.7 (#704)
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix umask race (#722)
* Set umask before extracting layers to avoid race condition
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Add comment
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Update archive/extract.go
Signed-off-by: Natalie Arellano <narellano@vmware.com>
Co-authored-by: Anthony Emengo <aemengo@vmware.com>
* Don't try to set the umask outside of extract
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Don't try to read umask in extract
Signed-off-by: Natalie Arellano <narellano@vmware.com>
Co-authored-by: Anthony Emengo <aemengo@vmware.com>
* Buildpack api 0.7 is not supported (#726)
* Buildpack api 0.7 is not supported
We missed this when backing out asset packages.
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Use the correct tag when signing the sbom (#729)
* Use the correct tag when signing the sbom
Also there is no need to parse the digest from `crane tag` because it does not change.
This will make the code less brittle.
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Add manifest sha when validating semver
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Ensure umask is unset when extracting archive (#727)
* Ensure umask is unset when extracting archive
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Add test
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Get the current umask without changing it
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix windows
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix windows
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Update per review comments
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Less confusing wording
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Reduce the diff
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Added comments
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Better wording
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Add test that system umask is used to create non existent directory not in tar file
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Variable names and formatting
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Try to fix windows
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Avoid direct dependency on archive
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Make test setup simpler and update comment
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Add build directive
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Apply suggestions from code review
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix Codecov
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix lint
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Set Umask as part of archive.Extract
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Move the unlock methods to be under defer
instead at the end of the function in case setUmask will panic.
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Bump imgutil (#731)
Signed-off-by: Natalie Arellano <narellano@vmware.com>
* Fix merge
Signed-off-by: Natalie Arellano <narellano@vmware.com>
Co-authored-by: Sambhav Kothari <skothari44@bloomberg.net>
Co-authored-by: Anthony Emengo <aemengo@vmware.com>
Co-authored-by: Yael Harel <yharel@vmware.com>
Co-authored-by: Yael Harel <43007598+yaelharel@users.noreply.github.com>
Natalie Arellano