Sign imgpkg
binaries while releasing them
#583
Labels
carvel accepted
This issue should be considered for future work and that the triage process has been completed
enhancement
This issue is a feature request
Describe the problem/challenge you have
All published
imgpkg
binaries should be signed so that it can be verified that they were published through official channels.Describe the solution you'd like
The changes proposed in this proposal for signing binary artifacts must be made a part of the release pipeline.
Vote on this request
This is an invitation to the community to vote on issues, to help us prioritize our backlog. Use the "smiley face" up to the right of this comment to vote.
👍 "I would like to see this addressed as soon as possible"
👎 "There are other more important things to focus on right now"
We are also happy to receive and review Pull Requests if you want to help working on this issue.
The text was updated successfully, but these errors were encountered: