docker
/
docs
mirror of https://github.com/docker/docs.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Merge pull request #18668 from dvdksn/scout-policy-attest-scratch-base-image 

scout: note policy eval issue with scratch image
This commit is contained in:
David Karlsson 2023-11-15 22:44:38 +01:00 committed by GitHub
parent b395c3e531 f6e63b4ebe
commit 3c0903b1df
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 6 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
content/scout/policy/_index.md
View File

@ -156,3 +156,9 @@ BuildKit automatically detects the Git repository and base images when this
information is available in the build context. For more information about information is available in the build context. For more information about
building with attestations, see building with attestations, see
[Attestations](../../build/attestations/_index.md). [Attestations](../../build/attestations/_index.md).
> **Note**
>
> Docker Scout is currently unable to discern the difference between using
> `scratch` as a base image and having no base image provenance. As a result,
> images based on `scratch` always fail the Supply chain attestations policy.