Comments (4)
ping @riyazdf @endophage PTAL
from cli.
It's in our TODO list for the next round of docker trust
additions. Early thoughts on the CLI syntax can be found in the "Configuring Trust in Docker" section of this doc: https://docs.google.com/document/d/1JOBAlCDuf5JnpVLW54voGuAdsnMmSR2LIbs8fjBDSaM/
I talked to @cyc115 about contributing this a while ago. Are you planning to take this on or is this issue a feature request? If you're planning to implement it, let's bikeshed in this issue a little on the syntax, because I've been thinking maybe it could be shortened from docker trust config pin ...
in that doc, to just docker trust pin ...
Also, we should decide in pin
is the term we want to use. Security people will understand it, but if there's a more intuitive term we can use we're not married to pin
. Remember that one of the goals of the docker trust
command is to be more intuitive than notary and to hide the TUF concepts behind something much more friendly to the typical user.
from cli.
This feature is super important...Any updates on progress? Is there a potential for a workaround? That is, if I have a notary client and configure notary trust pinning commands while the notary trust_dir is set to ~/.docker/trust, will docker's imbedded notary component pick it up and honor the config?
from cli.
See also this issue, which would require explicit user approval before TOFU
from cli.
Related Issues (20)
- Docker service logs are not returned in chronological order HOT 1
- Docker push missing visibility setting HOT 1
- Warning: Kernel Does Not Support cpuset or Cgroup Not Mounted
- docker rmi <image:tag> deletes both amd64 and arm64 builds on Apple Silicon HOT 1
- sysctl issues after upgrade from 25.0.4 to 26.0.0 HOT 1
- Proposal: Adding `docker init` Command to Docker CLI HOT 1
- API from container seem can not get response HOT 3
- build: don't hardcode classic builder for windows daemons HOT 1
- [BUG] 26.0.1 does not allow resources.limits.cpu to be a number HOT 5
- Better error message when trying to pull application/vnd.docker.image.rootfs.diff.tar.zstd layer
- UNIQUE SIZE column of docker system df -v should sum to total image occupancy
- Extend `docker container update` to support updating ports HOT 1
- Bug [26.0.1, build d260a54] - Cannot access service HOT 7
- docker network cannot be recreated after removal
- Image for a running container not visible in docker image ls -a HOT 3
- Docker container keeps increasing memory usage HOT 1
- mapping a container port to multiple host ports doesn't work in host mode
- Is it possible to merge two base images in Docker? HOT 1
- Add `docker create --name= --force` HOT 2
- add "docker tags" command HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from cli.