UNCLASSIFIED - NO CUI

Skip to content

Resolve "Add Image Labels to Repo Map"

Kenneth Maguire requested to merge 168-add-image-labels-repo-map into development

Closes #168 (closed)

This MR add the label values from the hardening_manifest.yaml to the repo_map.json. Sent the files to Eric Versaw and Reid Kaiser and Reid said that the new data matches their expectations.

Relevant pipelines:

https://repo1.dso.mil/dsop/opensource/pipeline-test-project/base/-/pipelines/116698

https://repo1.dso.mil/dsop/opensource/pipeline-test-project/ubi8-minimal/-/jobs/1271824

Relevant Results:

  • Labels in the ubi8 repo map:
 "Labels": {
            "mil.dso.ironbank.image.type": "commercial",
            "mil.dso.ironbank.product.name": "UBI8-minimal",
            "org.opencontainers.image.description": "Red Hat Universal Base Images (UBI) are OCI-compliant container base operating system images with complementary runtime languages and packages that are freely redistributable.",
            "org.opencontainers.image.licenses": "Red Hat Universal Base Image EULA",
            "org.opencontainers.image.title": "ubi8-minimal",
            "org.opencontainers.image.url": "https://catalog.redhat.com/software/container-stacks/detail/5ec53f50ef29fd35586d9a56",
            "org.opencontainers.image.vendor": "Red Hat",
            "org.opencontainers.image.version": "8.2"
        }

  • Labels in the base (distroless) repo map:
 "Labels": {
            "mil.dso.ironbank.image.type": "FIXME",
            "mil.dso.ironbank.product.name": "FIXME",
            "org.opencontainers.image.description": "FIXME",
            "org.opencontainers.image.licenses": "FIXME",
            "org.opencontainers.image.title": "base",
            "org.opencontainers.image.url": "FIXME",
            "org.opencontainers.image.vendor": "FIXME",
            "org.opencontainers.image.version": "nonroot"
        }
Edited by Kenneth Maguire

Merge request reports