scottk/secureblue
1
0
Fork 0
mirror of https://github.com/optim-enterprises-bv/secureblue.git synced 2025-10-31 18:37:47 +00:00
Code Issues Packages Projects Releases Wiki Activity

Change Aurora images according to upstream suggestions (#257)

Browse Source 
https://github.com/NiHaiden/aurora#:~:text=rpm%2Dostree%20rebase%20ostree%2Dimage%2Dsigned%3Adocker%3A//ghcr.io/ublue%2Dos/aurora%3Alatest
This commit is contained in:
MkKvcs
2024-04-10 21:01:36 +02:00
committed by GitHub
parent f3ec42e58e
commit d6837c4356
19 changed files with 19 additions and 27 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
.github/workflows/build.yml vendored
View File

@@ -114,7 +114,7 @@ jobs:
echo "BASE_IMAGE_NAME=$(echo $BASE_IMAGE | sed 's/.*\/.*\///')" >> $GITHUB_ENV echo "BASE_IMAGE_NAME=$(echo $BASE_IMAGE | sed 's/.*\/.*\///')" >> $GITHUB_ENV
- name: Verify base image - name: Verify base image
if: ${{ !contains(env.IMAGE_NAME, 'aurora') && !contains(env.IMAGE_NAME, 'wayblue') }} if: ${{ ! contains(env.IMAGE_NAME, 'wayblue') }}
uses: EyeCantCU/cosign-action/verify@v0.2.2 uses: EyeCantCU/cosign-action/verify@v0.2.2
with: with:
containers: ${{ env.BASE_IMAGE_NAME }}:${{ env.IMAGE_MAJOR_VERSION }} containers: ${{ env.BASE_IMAGE_NAME }}:${{ env.IMAGE_MAJOR_VERSION }}
@@ -127,14 +127,6 @@ jobs:
registry: 'ghcr.io/wayblueorg' registry: 'ghcr.io/wayblueorg'
pubkey: 'https://raw.githubusercontent.com/wayblueorg/wayblue/live/cosign.pub' pubkey: 'https://raw.githubusercontent.com/wayblueorg/wayblue/live/cosign.pub'
- name: Verify base image
if: ${{ contains(env.IMAGE_NAME, 'aurora') }}
uses: EyeCantCU/cosign-action/verify@v0.2.2
with:
containers: ${{ env.BASE_IMAGE_NAME }}:${{ env.IMAGE_MAJOR_VERSION }}
registry: 'ghcr.io/NiHaiden'
pubkey: 'https://raw.githubusercontent.com/NiHaiden/aurora/main/cosign.pub'
- name: Build secureblue - name: Build secureblue
uses: blue-build/github-action@v1.3.0 uses: blue-build/github-action@v1.3.0
with: with:

2
config/recipes/asus/recipe-aurora-asus-nvidia-userns.yml
View File

@@ -4,7 +4,7 @@ name: aurora-asus-nvidia-userns-hardened
description: "Aurora asus nvidia with some hardening applied" description: "Aurora asus nvidia with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-asus-nvidia base-image: ghcr.io/ublue-os/aurora-asus-nvidia
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/asus/recipe-aurora-asus-nvidia.yml
View File

@@ -4,7 +4,7 @@ name: aurora-asus-nvidia-hardened
description: "Aurora asus nvidia with some hardening applied" description: "Aurora asus nvidia with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-asus-nvidia base-image: ghcr.io/ublue-os/aurora-asus-nvidia
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/asus/recipe-aurora-asus-userns.yml
View File

@@ -4,7 +4,7 @@ name: aurora-asus-userns-hardened
description: "Aurora asus with some hardening applied" description: "Aurora asus with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-asus base-image: ghcr.io/ublue-os/aurora-asus
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/asus/recipe-aurora-asus.yml
View File

@@ -4,7 +4,7 @@ name: aurora-asus-hardened
description: "Aurora asus with some hardening applied" description: "Aurora asus with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-asus base-image: ghcr.io/ublue-os/aurora-asus
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/asus/recipe-aurora-dx-asus-nvidia-userns.yml
View File

@@ -4,7 +4,7 @@ name: aurora-dx-asus-nvidia-userns-hardened
description: "Aurora asus dx nvidia with some hardening applied" description: "Aurora asus dx nvidia with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-dx-asus-nvidia base-image: ghcr.io/ublue-os/aurora-dx-asus-nvidia
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/asus/recipe-aurora-dx-asus-userns.yml
View File

@@ -4,7 +4,7 @@ name: aurora-dx-asus-userns-hardened
description: "Aurora asus dx with some hardening applied" description: "Aurora asus dx with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-dx-asus base-image: ghcr.io/ublue-os/aurora-dx-asus
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/general/recipe-aurora-dx-main-userns.yml
View File

@@ -4,7 +4,7 @@ name: aurora-dx-main-userns-hardened
description: "Aurora-dx main with some hardening applied" description: "Aurora-dx main with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-dx base-image: ghcr.io/ublue-os/aurora-dx
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/general/recipe-aurora-dx-nvidia-userns.yml
View File

@@ -4,7 +4,7 @@ name: aurora-dx-nvidia-userns-hardened
description: "Aurora-dx nvidia with some hardening applied" description: "Aurora-dx nvidia with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-dx-nvidia base-image: ghcr.io/ublue-os/aurora-dx-nvidia
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/general/recipe-aurora-dx-surface-nvidia-userns.yml
View File

@@ -4,7 +4,7 @@ name: aurora-dx-surface-nvidia-userns-hardened
description: "Aurora-dx surface nvidia with some hardening applied" description: "Aurora-dx surface nvidia with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-dx-surface-nvidia base-image: ghcr.io/ublue-os/aurora-dx-surface-nvidia
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/general/recipe-aurora-dx-surface-userns.yml
View File

@@ -4,7 +4,7 @@ name: aurora-dx-surface-userns-hardened
description: "Aurora-dx surface with some hardening applied" description: "Aurora-dx surface with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-dx-surface base-image: ghcr.io/ublue-os/aurora-dx-surface
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/general/recipe-aurora-main-userns.yml
View File

@@ -4,7 +4,7 @@ name: aurora-main-userns-hardened
description: "Aurora main with some hardening applied" description: "Aurora main with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora base-image: ghcr.io/ublue-os/aurora
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/general/recipe-aurora-main.yml
View File

@@ -4,7 +4,7 @@ name: aurora-main-hardened
description: "Aurora main with some hardening applied" description: "Aurora main with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora base-image: ghcr.io/ublue-os/aurora
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/general/recipe-aurora-nvidia-userns.yml
View File

@@ -4,7 +4,7 @@ name: aurora-nvidia-userns-hardened
description: "Aurora nvidia with some hardening applied" description: "Aurora nvidia with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-nvidia base-image: ghcr.io/ublue-os/aurora-nvidia
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/general/recipe-aurora-nvidia.yml
View File

@@ -4,7 +4,7 @@ name: aurora-nvidia-hardened
description: "Aurora nvidia with some hardening applied" description: "Aurora nvidia with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-nvidia base-image: ghcr.io/ublue-os/aurora-nvidia
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/general/recipe-aurora-surface-nvidia-userns.yml
View File

@@ -4,7 +4,7 @@ name: aurora-surface-nvidia-userns-hardened
description: "Aurora surface nvidia with some hardening applied" description: "Aurora surface nvidia with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-surface-nvidia base-image: ghcr.io/ublue-os/aurora-surface-nvidia
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/general/recipe-aurora-surface-nvidia.yml
View File

@@ -4,7 +4,7 @@ name: aurora-surface-nvidia-hardened
description: "Aurora surface nvidia with some hardening applied" description: "Aurora surface nvidia with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-surface-nvidia base-image: ghcr.io/ublue-os/aurora-surface-nvidia
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/general/recipe-aurora-surface-userns.yml
View File

@@ -4,7 +4,7 @@ name: aurora-surface-userns-hardened
description: "Aurora surface with some hardening applied" description: "Aurora surface with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-surface base-image: ghcr.io/ublue-os/aurora-surface
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order

2
config/recipes/general/recipe-aurora-surface.yml
View File

@@ -4,7 +4,7 @@ name: aurora-surface-hardened
description: "Aurora surface with some hardening applied" description: "Aurora surface with some hardening applied"
# the base image to build on top of (FROM) and the version tag to use # the base image to build on top of (FROM) and the version tag to use
base-image: ghcr.io/nihaiden/aurora-surface base-image: ghcr.io/ublue-os/aurora-surface
image-version: 39 image-version: 39
# list of modules, executed in order # list of modules, executed in order