aws-signer: Signer Profile construct should support Notation-OCI-SHA384-ECDSA platform #28580
Closed
1 of 2 tasks
Labels
@aws-cdk/aws-signer
effort/small
Small work item – less than a day of effort
feature-request
A feature should be added or improved.
p2
Comments
Sohail-Haaris-bah
added
feature-request
|
Awesome! Thanks for the PR! |
pahud
added
p2
effort/small
mergify bot
pushed a commit
that referenced
this issue
Jan 8, 2024
Adds support for the `Notation-OCI-SHA384-ECDSA` signing profile platform. Also, refactors the `Platform` class to an enum-like class to allow custom platforms (and prevent blocking users if added platforms are missing on the `enum` declaration). Closes #28580. ---- *By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license*
|
This was referenced Feb 10, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the feature
The L2 construct for creating a Signer Profile in AWS Signer doesn't support creating a singer profile with the
Notation-OCI-SHA384-ECDSAsigning platform. This is odd, given that the L1 construct for it does. As such, I'd like to open a PR for the construct to add this capability, assuming that it just involves adding an instantiation to thePlatformclass.Use Case
AWS documentation recommends using this particular signing profile for creating an AWS Signer configuration for signing Docker images that get pushed to an ECR repository.
Proposed Solution
Adding a new enum value for the Platform class. https://github.com/aws/aws-cdk/blob/main/packages/aws-cdk-lib/aws-signer/lib/signing-profile.ts#L9
Other Information
No response
Acknowledgements
CDK version used
2.x
Environment details (OS name and version, etc.)
MacOS
The text was updated successfully, but these errors were encountered: