svrnty/docker-base-distro
2
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 13 Wiki Activity

Switch provenance back to mode=max for Docker Scout compliance
Some checks failed
Build and Push Base Distro Images / build-and-push (apko/base.yaml, base) (push) Failing after 33s
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/base.yaml, base) (push) Waiting to run
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/build.yaml, build) (push) Waiting to run
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Waiting to run
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Waiting to run
Details
Weekly Rebuild (CVE Updates) / rebuild (apko/flutter-sdk.yaml, flutter-sdk) (push) Waiting to run
Details
Check for Upstream Stable Updates / Check Wolfi package updates (push) Waiting to run
Details
Check for Upstream Stable Updates / Check .NET stable releases (push) Waiting to run
Details
Check for Upstream Stable Updates / Check Flutter stable releases (push) Waiting to run
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/base.yaml, base) (push) Blocked by required conditions
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/build.yaml, build) (push) Blocked by required conditions
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Blocked by required conditions
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Blocked by required conditions
Details
Check for Upstream Stable Updates / Rebuild and push all variants (apko/flutter-sdk.yaml, flutter-sdk) (push) Blocked by required conditions
Details
Check for Upstream Stable Updates / Create release for new Flutter version (push) Blocked by required conditions
Details
Build and Push Base Distro Images / build-and-push (apko/build.yaml, build) (push) Failing after 44s
Details
Build and Push Base Distro Images / build-and-push (apko/dotnet-runtime.yaml, dotnet-runtime) (push) Failing after 34s
Details
Build and Push Base Distro Images / build-and-push (apko/flutter-sdk.yaml, flutter-sdk) (push) Has been cancelled
Details
Build and Push Base Distro Images / build-and-push (apko/dotnet-sdk.yaml, dotnet-sdk) (push) Has been cancelled
Details

Browse Source 
Attestations are stored as separate manifests in the OCI index, not in
the image layers. Docker pull only fetches the platform manifest, so
mode=max does not affect actual pull size. Docker Scout requires max
mode for full compliance.

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
This commit is contained in:
Mathias Beaulieu-Duncan 2026-02-02 10:40:49 -05:00
parent f9890ff15d
commit 6593a17aea
3 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
.gitea/workflows/publish.yaml
View File

@ -125,7 +125,7 @@ jobs:
file: /tmp/Dockerfile file: /tmp/Dockerfile
push: true push: true
sbom: true sbom: true
provenance: mode=min provenance: mode=max
tags: | tags: |
${{ secrets.REGISTRY_URL }}/${{ env.IMAGE_NAME }}:${{ matrix.variant }}-${{ steps.tag.outputs.suffix }} ${{ secrets.REGISTRY_URL }}/${{ env.IMAGE_NAME }}:${{ matrix.variant }}-${{ steps.tag.outputs.suffix }}
${{ secrets.REGISTRY_URL }}/${{ env.IMAGE_NAME }}:${{ steps.version.outputs.version_tag }} ${{ secrets.REGISTRY_URL }}/${{ env.IMAGE_NAME }}:${{ steps.version.outputs.version_tag }}

2
.gitea/workflows/rebuild.yaml
View File

@ -117,7 +117,7 @@ jobs:
file: /tmp/Dockerfile file: /tmp/Dockerfile
push: true push: true
sbom: true sbom: true
provenance: mode=min provenance: mode=max
tags: | tags: |
${{ secrets.REGISTRY_URL }}/${{ env.IMAGE_NAME }}:${{ matrix.variant }}-latest ${{ secrets.REGISTRY_URL }}/${{ env.IMAGE_NAME }}:${{ matrix.variant }}-latest
${{ secrets.REGISTRY_URL }}/${{ env.IMAGE_NAME }}:${{ steps.version.outputs.version_tag }} ${{ secrets.REGISTRY_URL }}/${{ env.IMAGE_NAME }}:${{ steps.version.outputs.version_tag }}

2
.gitea/workflows/update-check.yaml
View File

@ -205,7 +205,7 @@ jobs:
file: /tmp/Dockerfile file: /tmp/Dockerfile
push: true push: true
sbom: true sbom: true
provenance: mode=min provenance: mode=max
tags: | tags: |
${{ secrets.REGISTRY_URL }}/${{ env.IMAGE_NAME }}:${{ matrix.variant }}-latest ${{ secrets.REGISTRY_URL }}/${{ env.IMAGE_NAME }}:${{ matrix.variant }}-latest
${{ secrets.REGISTRY_URL }}/${{ env.IMAGE_NAME }}:${{ steps.version.outputs.version_tag }} ${{ secrets.REGISTRY_URL }}/${{ env.IMAGE_NAME }}:${{ steps.version.outputs.version_tag }}