This project is used to demonstrate how OCI artifacts can be signed and verified in a developement pipeline.
Important: this application uses various AWS services and there are costs associated with these services after the Free Tier usage - please see the AWS Pricing page for details. You are responsible for any AWS costs incurred. No warranty is implied in this example.
Requirements • Architecture • Installation • Cleanup • Security • License
- An AWS Account
- AWS CLI already configured with appropriate permissions to build and deploy CDK
- NodeJS 14.x installed
- AWS Cloud Development Kit (AWS CDK) v2 installed minimum version 2.87.
- Clone the repo onto your local development machine:
git clone https://github.com/aws-samples/aws-signer-oci-artifacts
-
Change into the cloned directed with
cd aws-signer-oci-artifacts
and install the dependencies vianpm install
-
Deploy the CDK application via
cdk deploy
. During the following prompt,Do you wish to deploy these changes (y/n)?
, enter y, to enable the infrastructure to deployed.
-
Navigate to the ECR repository which should be named signer-workflow-ecr and delete all the artifacts.
-
Destroy the CDK application:
cdk destroy
If you have any questions, please contact the author or raise an issue in the GitHub repo.
See CONTRIBUTING for more information.
This library is licensed under the MIT-0 License. See the LICENSE file.