harbor/tests/apitests/python/library/cosign.py

# -*- coding: utf-8 -*-
import base
import os

def generate_key_pair():
    config_key_file = "cosign.key"
    config_pub_file = "cosign.pub"
    if os.path.exists(config_key_file) and os.path.exists(config_pub_file):
        os.remove(config_key_file)
        os.remove(config_pub_file)
    command = ["cosign", "generate-key-pair"]
    base.run_command(command)

def sign_artifact(artifact):
    command = ["cosign", "sign", "-y", "--allow-insecure-registry", "--key", "cosign.key", artifact]
    base.run_command(command)

def push_artifact_sbom(artifact, sbom_path, type="spdx"):
    command = ["cosign", "attach", "sbom", "--allow-insecure-registry", "--registry-referrers-mode", "oci-1-1",
               "--type", type, "--sbom", sbom_path, artifact]
    base.run_command(command)
Add cosign Artifact API test case Signed-off-by: Yang Jiao <jiaoya@vmware.com> 2022-01-19 11:26:09 +01:00			`# -- coding: utf-8 --`
			`import base`
Add Referrers API testcase (#18775) Fix #18617 Signed-off-by: Yang Jiao <jiaoya@vmware.com> 2023-06-01 10:34:40 +02:00			`import os`
Add cosign Artifact API test case Signed-off-by: Yang Jiao <jiaoya@vmware.com> 2022-01-19 11:26:09 +01:00
			`def generate_key_pair():`
Add Referrers API testcase (#18775) Fix #18617 Signed-off-by: Yang Jiao <jiaoya@vmware.com> 2023-06-01 10:34:40 +02:00			`config_key_file = "cosign.key"`
			`config_pub_file = "cosign.pub"`
			`if os.path.exists(config_key_file) and os.path.exists(config_pub_file):`
			`os.remove(config_key_file)`
			`os.remove(config_pub_file)`
Add cosign Artifact API test case Signed-off-by: Yang Jiao <jiaoya@vmware.com> 2022-01-19 11:26:09 +01:00			`command = ["cosign", "generate-key-pair"]`
			`base.run_command(command)`

			`def sign_artifact(artifact):`
Update e2e engine image (#18747) 1. Update containerd version to 1.7.1 2. Update docker compose version to 2.18.1 3. Update helm version to 3.12.0 4. Update ORAS version to 1.0.0 5. Update CNAB version to 0.4.0 6. Update imgpkg version to 0.36.2 7. Update cosign version to 2.0.2 8. Update docker version to 24.0.2 9. Update chromedriver version to 114.0.5735.16 Signed-off-by: Yang Jiao <jiaoya@vmware.com> 2023-05-29 05:55:14 +02:00			`command = ["cosign", "sign", "-y", "--allow-insecure-registry", "--key", "cosign.key", artifact]`
Add cosign Artifact API test case Signed-off-by: Yang Jiao <jiaoya@vmware.com> 2022-01-19 11:26:09 +01:00			`base.run_command(command)`
Add Referrers API testcase (#18775) Fix #18617 Signed-off-by: Yang Jiao <jiaoya@vmware.com> 2023-06-01 10:34:40 +02:00
			`def push_artifact_sbom(artifact, sbom_path, type="spdx"):`
			`command = ["cosign", "attach", "sbom", "--allow-insecure-registry", "--registry-referrers-mode", "oci-1-1",`
			`"--type", type, "--sbom", sbom_path, artifact]`
			`base.run_command(command)`