I'm looking for container images that ensure high transparency in our environment. Every container image we deploy must be traceable and verifiable, which means we require features like signed provenance and tamper-proof Software Bill of Materials (SBOMs), as well as straightforward exports for audits. The standard process of building images locally and then generating SBOMs is feeling too unreliable and manual, increasing the chance for mistakes. Ideally, I'd like to find ready-made, minimal container images that come with signed SBOMs and provenance data. Integration with our CI/CD pipeline would be a huge plus, as it would help speed up our compliance audits. Any suggestions?
0 Answers
There is no answer to this question yet. If you know the answer or can offer some help, please use the form below.
Related Questions
How To: Running Codex CLI on Windows with Azure OpenAI
Set Wordpress Featured Image Using Javascript
How To Fix PHP Random Being The Same
Why no WebP Support with Wordpress
Replace Wordpress Cron With Linux Cron
Customize Yoast Canonical URL Programmatically