Add spec for verify json output#559
Conversation
|
@byronchien You may need to rebase your branch and sync with the upstream main as it has conflicts. |
byronchien
force-pushed
the
json-verify-spec
branch
from
14658be to
f71dc76
Compare
byronchien
requested review from
JeyJeyGao,
NiazFK,
SteveLasker,
gokarnm,
justincormack,
priteshbandi and
rgnote
as code owners
Codecov Report
❗ Your organization is not using the GitHub App Integration. As a result you may experience degraded service beginning May 15th. Please install the Github App Integration for your organization. Read more. @@ Coverage Diff @@
## main #559 +/- ##
=======================================
Coverage 63.52% 63.52%
=======================================
Files 40 40
Lines 2237 2237
=======================================
Hits 1421 1421
Misses 695 695
Partials 121 121 📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more |
byronchien
force-pushed
the
json-verify-spec
branch
from
f71dc76 to
ba29ad2
Compare
byronchien
force-pushed
the
json-verify-spec
branch
from
ba29ad2 to
cd288d7
Compare
Signed-off-by: Byron Chien <byronc@ucla.edu>
byronchien
force-pushed
the
json-verify-spec
branch
from
cd288d7 to
f5d411d
Compare
|
+1. I think it's worth merging this. Typically it would be good to call out all possible values of |
|
Should it be merged post v1? |
+1 on merging it post v1. |
|
|
||
| ### Verify signatures on an OCI artifact with json output | ||
|
|
||
| Use the `--output` flag to format verification output in json. |
There was a problem hiding this comment.
Can you also add this new flag along with its description into the Outline session of this spec? (https://github.com/notaryproject/notation/blob/main/specs/commandline/verify.md#outline)
| Use the `--output` flag to format verification output in json. | ||
|
|
||
| ```shell | ||
| notation verify --output json localhost:5000/net-monitor@sha256:b94d27b9934d3e08a52e52d7da7dabfac484efe37a5380ee9088f7ace2efcde9 |
There was a problem hiding this comment.
Just curious, what error message are we expecting from the following command:
notation verify --output <something_not_defined> localhost:5000/net-monitor@sha256:b94d27b9934d3e08a52e52d7da7dabfac484efe37a5380ee9088f7ace2efcde9
yizha1
left a comment
yizha1
left a comment
There was a problem hiding this comment.
@byronchien I reviewed this PR again. Here are two comments:
- Unified solution for all Notation CLI commands: I couldn't recall any reason behind this PR that only verify command is addressed. The Json output should be considered for all other Notation CLI commands. So, it is suggested to create a unified solution for all Notation CLI commands.
- About the flag name
-o --output: There is a new feature about signing and verifying arbitrary files. For this feature, we may need to output signature to a file during signing, there may be a conflict of using--output. It seemsnotation inspectcommand already uses the flag--output. We need to align the usage of flag--output.
/cc: @priteshbandi @shizhMSFT @FeynmanZhou
|
This PR is stale because it has been opened for 45 days with no activity. Remove stale label or comment. Otherwise, it will be closed in 30 days. |
|
PR closed due to no activity in the past 30 days. |
7 participants
Adds spec for
notation verify $IMAGE --output json.Changes from previous iteration:
Related issues and PRs:
notation verify#527notation verify#546SkippedByTrustPolicyfrom JSON output ofnotation verifyis not documented #547