Chip Zoller chipzoller

## last.txt
prod-1.108.1

## kyverno_sbom.json
{
  "$schema": "http://cyclonedx.org/schema/bom-1.4.schema.json",
  "bomFormat": "CycloneDX",
  "specVersion": "1.4",
  "serialNumber": "urn:uuid:0d54c358-ccce-4723-80a6-6506580f1e82",
  "version": 1,
  "metadata": {
    "timestamp": "2023-08-11T04:38:21Z",
    "tools": [
      {

## gist:2bcf71fe41c67a25f3bc5875a5f6fba9
1:43:27 PM: build-image version: c11c0eb9939c949586b0f78302107908b668a11e (focal)
1:43:27 PM: buildbot version: c11c0eb9939c949586b0f78302107908b668a11e
1:43:28 PM: Building without cache
1:43:28 PM: Starting to prepare the repo for build
1:43:28 PM: No cached dependencies found. Cloning fresh repo
1:43:28 PM: git clone --filter=blob:none https://github.com/kyverno/website
1:43:28 PM: Preparing Git Reference pull/904/head
1:43:30 PM: Custom build command detected. Proceeding with the specified command: 'npm install --save-dev autoprefixer && npm install --save-dev postcss-cli && npm install -D postcss && hugo --gc --minify --buildFuture -b $DEPLOY_PRIME_URL'
1:43:30 PM: Starting to install dependencies
1:43:30 PM: Python version set to 3.8

## gist:d40e01b75874e5933097570ee9d3ee6c
2:51:35 PM: build-image version: c11c0eb9939c949586b0f78302107908b668a11e (focal)
2:51:35 PM: buildbot version: c11c0eb9939c949586b0f78302107908b668a11e
2:51:35 PM: Building without cache
2:51:35 PM: Starting to prepare the repo for build
2:51:35 PM: No cached dependencies found. Cloning fresh repo
2:51:35 PM: git clone --filter=blob:none https://github.com/kyverno/website
2:51:36 PM: Preparing Git Reference pull/904/head
2:51:37 PM: Custom build command detected. Proceeding with the specified command: 'hugo --gc --minify --buildFuture -b $DEPLOY_PRIME_URL'
2:51:38 PM: Starting to install dependencies
2:51:38 PM: Python version set to 3.8

## policy.yaml
apiVersion: kyverno.io/v1
kind: ClusterPolicy
metadata:
  creationTimestamp: "2023-03-07T00:24:33Z"
  generation: 1
  name: check-namespace-costs-cm
  resourceVersion: "1741990"
  uid: bdbbf92e-6948-4553-a5af-c74f97436b77
  annotations:
    policies.kyverno.io/title: Namespace Cost Exceeded

## clusterpolicy.yaml
apiVersion: kyverno.io/v2beta1
kind: ClusterPolicy
metadata:
  name: check-subject
spec:
  validationFailureAction: Enforce
  background: false
  rules:
  - name: check-chip
    match:

## gist:45387ed2f692679da32efc033a282890
COSIGN_EXPERIMENTAL=1 cosign attest --replace --predicate scan.json --type https://trivy.aquasec.com/scan/v2 ghcr.io/chipzoller/zulu:latest -d
2022/06/24 09:17:35 --> GET https://ghcr.io/v2/
2022/06/24 09:17:35 GET /v2/ HTTP/1.1
Host: ghcr.io
User-Agent: cosign/1.9.0 (darwin; arm64) go-containerregistry/v0.8.1-0.20220209165246-a44adc326839
Accept-Encoding: gzip


2022/06/24 09:17:35 <-- 401 https://ghcr.io/v2/ (160.239625ms)
2022/06/24 09:17:35 HTTP/2.0 401 Unauthorized
	{
	"$schema": "http://cyclonedx.org/schema/bom-1.4.schema.json",
	"bomFormat": "CycloneDX",
	"specVersion": "1.4",
	"serialNumber": "urn:uuid:0d54c358-ccce-4723-80a6-6506580f1e82",
	"version": 1,
	"metadata": {
	"timestamp": "2023-08-11T04:38:21Z",
	"tools": [
	{
	1:43:27 PM: build-image version: c11c0eb9939c949586b0f78302107908b668a11e (focal)
	1:43:27 PM: buildbot version: c11c0eb9939c949586b0f78302107908b668a11e
	1:43:28 PM: Building without cache
	1:43:28 PM: Starting to prepare the repo for build
	1:43:28 PM: No cached dependencies found. Cloning fresh repo
	1:43:28 PM: git clone --filter=blob:none https://github.com/kyverno/website
	1:43:28 PM: Preparing Git Reference pull/904/head
	1:43:30 PM: Custom build command detected. Proceeding with the specified command: 'npm install --save-dev autoprefixer && npm install --save-dev postcss-cli && npm install -D postcss && hugo --gc --minify --buildFuture -b $DEPLOY_PRIME_URL'
	1:43:30 PM: Starting to install dependencies
	1:43:30 PM: Python version set to 3.8
	2:51:35 PM: build-image version: c11c0eb9939c949586b0f78302107908b668a11e (focal)
	2:51:35 PM: buildbot version: c11c0eb9939c949586b0f78302107908b668a11e
	2:51:35 PM: Building without cache
	2:51:35 PM: Starting to prepare the repo for build
	2:51:35 PM: No cached dependencies found. Cloning fresh repo
	2:51:35 PM: git clone --filter=blob:none https://github.com/kyverno/website
	2:51:36 PM: Preparing Git Reference pull/904/head
	2:51:37 PM: Custom build command detected. Proceeding with the specified command: 'hugo --gc --minify --buildFuture -b $DEPLOY_PRIME_URL'
	2:51:38 PM: Starting to install dependencies
	2:51:38 PM: Python version set to 3.8
	apiVersion: kyverno.io/v1
	kind: ClusterPolicy
	metadata:
	creationTimestamp: "2023-03-07T00:24:33Z"
	generation: 1
	name: check-namespace-costs-cm
	resourceVersion: "1741990"
	uid: bdbbf92e-6948-4553-a5af-c74f97436b77
	annotations:
	policies.kyverno.io/title: Namespace Cost Exceeded
	apiVersion: kyverno.io/v2beta1
	kind: ClusterPolicy
	metadata:
	name: check-subject
	spec:
	validationFailureAction: Enforce
	background: false
	rules:
	- name: check-chip
	match:
	COSIGN_EXPERIMENTAL=1 cosign attest --replace --predicate scan.json --type https://trivy.aquasec.com/scan/v2 ghcr.io/chipzoller/zulu:latest -d
	2022/06/24 09:17:35 --> GET https://ghcr.io/v2/
	2022/06/24 09:17:35 GET /v2/ HTTP/1.1
	Host: ghcr.io
	User-Agent: cosign/1.9.0 (darwin; arm64) go-containerregistry/v0.8.1-0.20220209165246-a44adc326839
	Accept-Encoding: gzip


	2022/06/24 09:17:35 <-- 401 https://ghcr.io/v2/ (160.239625ms)
	2022/06/24 09:17:35 HTTP/2.0 401 Unauthorized