├── .gitignore ├── LICENSE ├── README.md ├── cosign_examples ├── .gitignore ├── 01_cosign_generate_keypair.sh ├── 02_cosign_sign_image.sh ├── 03_cosign_attach_attestation.sh ├── 04_cosign_verify_signature.sh ├── 05_cosign_verify_attestation.sh ├── 10_cosign_sign_image2.sh ├── 11_syft_attest_image.sh ├── 12_cosign_attach_syft_attestation.sh ├── 13_cosign_verify_syft_attestation.sh ├── 20_cosign_attach_attestation_for_subsequent_policy_verification.sh ├── 21_cosign_verify_attestation.sh ├── 22_cosign_verify_attestation_rego_policy.sh ├── 23_cosign_verify_attestation_cue_policy.sh ├── 30_cosign_verify_keyless_signing.sh ├── 40_cosign_verify_google_distroless.sh ├── 41_cosign_verify_google_distroless_python.sh ├── 50_cosign_verify_python_download.sh ├── 60_cosign_blob_operations.sh ├── artifact ├── cosign_policy.cue ├── cosign_policy.rego ├── cosign_policy_after.cue ├── cosign_policy_before.cue ├── digest.json ├── enable_gitsign.sh └── git_verify_commit.sh ├── deps_dev_examples └── deps_dev_examples.sh ├── distroless_examples └── run_distroless_images.sh ├── docker_attach_container_example └── attach_debug_container.sh ├── generic_scripts ├── remove_all_images.sh └── remove_images_with_no_tag.sh ├── image_history_inspect_examples ├── .gitignore ├── 1_1_nginx_example_docker_crane.sh ├── 1_2_nginx_example_cosign.sh ├── 2_nginx_example_podman_skopeo.sh └── 3_nerdctl_image_inspect.sh ├── install_scripts ├── install_bomber.sh ├── install_containerd.sh ├── install_cosign.sh ├── install_crane.sh ├── install_cyclonedx.sh ├── install_dive.sh ├── install_docker.sh ├── install_go.sh ├── install_grype_syft.sh ├── install_hadolint.sh ├── install_jib.sh ├── install_k8s_tools.sh ├── install_ms_sbom_tool.sh ├── install_nerdctl_buildkit.sh ├── install_oras.sh ├── install_pack.sh ├── install_podman_tools_fedora.sh ├── install_podman_tools_ubuntu.sh ├── install_sbom_scorecard.sh ├── install_sbom_tools.sh ├── install_semgrep.sh ├── install_task.sh ├── install_trivy.sh └── install_trivy_fedora.sh ├── kind_examples ├── 1_install_kind.sh ├── 2_1_create_kind_cluster_with_registry.sh ├── 2_2_test_kind_local_registry.sh ├── 2_3_crane_operations.sh ├── 3_0_show_node_labels.sh ├── 3_1_get_nginx_ingress_controller_manifest.sh ├── 3_2_install_nginx_ingress_controller.sh ├── 3_3_apply_test_ingress.sh ├── ingress-nginx-deploy.yaml ├── ingress_usage_example.yaml └── test_ingress.yaml ├── ko_sbom_examples └── get_digest_and_sbom.sh ├── microk8s_examples ├── 1_install_microk8s.sh ├── 2_microk8s_operations.sh ├── 3_test_local_registry.sh ├── 4_crane_operations.sh ├── 5_crane_push_jib_image_tar_to_ghcr.sh ├── 5_crane_push_jib_image_tar_to_local_registry.sh └── hello-server-deployment.yaml ├── oci_examples ├── 1_inspect_image_dive.sh ├── 2_crane_operations.sh ├── 3_oras_operations.sh ├── 4_regcli_operations.sh └── 5_skopeo_operations.sh ├── podman_examples ├── podman_operations.sh └── skopeo_operations.sh ├── runc_example ├── .gitignore └── create_alpine_container.sh ├── scan_result_parsing_and_sbom_examples ├── .gitignore ├── bomber_inspect_sbom.sh ├── grype_generate_json_from_syft_sbom.sh ├── grype_generate_sarif_from_image.sh ├── grype_generate_sarif_from_syft_sbom.sh ├── inspect_hadolint_sarif.sh ├── inspect_sarif.sh ├── run_sbom_scorecard.sh ├── sbom_manager_operations.sh ├── sbom_utility_operations.sh ├── syft_generate_sbom_json.sh ├── syft_generate_sbom_spdx.sh ├── trivy_generate_json.sh ├── trivy_generate_sarif.sh ├── trivy_generate_sbom_spdx.sh └── trivy_scan_sbom_spdx.sh ├── slsa-verifier-examples ├── .gitignore ├── extract_payload_from_intoto_attestation.sh ├── run_slsa_verifier.sh ├── sbom-scorecard-attestation.json └── sbom-scorecard-linux-amd64.intoto.jsonl └── taskfiles ├── .env ├── build-curated-docker-images ├── .env ├── alpine3.16-build │ ├── Dockerfile │ └── Taskfile.yaml ├── alpine3.16-openjdk11 │ ├── Dockerfile │ └── Taskfile.yaml ├── alpine3.16-openjdk17 │ ├── Dockerfile │ └── Taskfile.yaml ├── alpine3.16-openjre11 │ ├── Dockerfile │ └── Taskfile.yaml ├── alpine3.16-openjre17 │ ├── Dockerfile │ └── Taskfile.yaml ├── alpine3.16-run │ ├── Dockerfile │ ├── Taskfile.yaml │ └── scan_results │ │ └── trivy-dockerfile-Dockerfile.json ├── ubuntu22.04-base │ ├── Dockerfile │ └── Taskfile.yaml ├── ubuntu22.04-cicd │ ├── Dockerfile │ └── Taskfile.yaml ├── ubuntu22.04-node16 │ ├── Dockerfile │ └── Taskfile.yaml ├── ubuntu22.04-openjdk11 │ ├── Dockerfile │ └── Taskfile.yaml └── ubuntu22.04-openjdk17 │ ├── Dockerfile │ └── Taskfile.yaml ├── build-java-gradle-spring-music └── Taskfile.yaml ├── build-java-maven-sample-springboot ├── Taskfile-containerd.yaml ├── Taskfile-docker.yaml └── Taskfile.yaml ├── build-jib-springboot-helloworld ├── Taskfile-containerd.yaml └── Taskfile.yaml ├── build-python-flask ├── Taskfile-docker.yaml ├── Taskfile-podman.yaml └── Taskfile.yaml ├── common └── Taskfile.yaml └── testing └── Taskfile.yaml /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/.gitignore -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/LICENSE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/README.md -------------------------------------------------------------------------------- /cosign_examples/.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/.gitignore -------------------------------------------------------------------------------- /cosign_examples/01_cosign_generate_keypair.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/01_cosign_generate_keypair.sh -------------------------------------------------------------------------------- /cosign_examples/02_cosign_sign_image.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/02_cosign_sign_image.sh -------------------------------------------------------------------------------- /cosign_examples/03_cosign_attach_attestation.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/03_cosign_attach_attestation.sh -------------------------------------------------------------------------------- /cosign_examples/04_cosign_verify_signature.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/04_cosign_verify_signature.sh -------------------------------------------------------------------------------- /cosign_examples/05_cosign_verify_attestation.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/05_cosign_verify_attestation.sh -------------------------------------------------------------------------------- /cosign_examples/10_cosign_sign_image2.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/10_cosign_sign_image2.sh -------------------------------------------------------------------------------- /cosign_examples/11_syft_attest_image.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/11_syft_attest_image.sh -------------------------------------------------------------------------------- /cosign_examples/12_cosign_attach_syft_attestation.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/12_cosign_attach_syft_attestation.sh -------------------------------------------------------------------------------- /cosign_examples/13_cosign_verify_syft_attestation.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/13_cosign_verify_syft_attestation.sh -------------------------------------------------------------------------------- /cosign_examples/20_cosign_attach_attestation_for_subsequent_policy_verification.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/20_cosign_attach_attestation_for_subsequent_policy_verification.sh -------------------------------------------------------------------------------- /cosign_examples/21_cosign_verify_attestation.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/21_cosign_verify_attestation.sh -------------------------------------------------------------------------------- /cosign_examples/22_cosign_verify_attestation_rego_policy.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/22_cosign_verify_attestation_rego_policy.sh -------------------------------------------------------------------------------- /cosign_examples/23_cosign_verify_attestation_cue_policy.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/23_cosign_verify_attestation_cue_policy.sh -------------------------------------------------------------------------------- /cosign_examples/30_cosign_verify_keyless_signing.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/30_cosign_verify_keyless_signing.sh -------------------------------------------------------------------------------- /cosign_examples/40_cosign_verify_google_distroless.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/40_cosign_verify_google_distroless.sh -------------------------------------------------------------------------------- /cosign_examples/41_cosign_verify_google_distroless_python.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/41_cosign_verify_google_distroless_python.sh -------------------------------------------------------------------------------- /cosign_examples/50_cosign_verify_python_download.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/50_cosign_verify_python_download.sh -------------------------------------------------------------------------------- /cosign_examples/60_cosign_blob_operations.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/60_cosign_blob_operations.sh -------------------------------------------------------------------------------- /cosign_examples/artifact: -------------------------------------------------------------------------------- 1 | my first artifact 2 | -------------------------------------------------------------------------------- /cosign_examples/cosign_policy.cue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/cosign_policy.cue -------------------------------------------------------------------------------- /cosign_examples/cosign_policy.rego: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/cosign_policy.rego -------------------------------------------------------------------------------- /cosign_examples/cosign_policy_after.cue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/cosign_policy_after.cue -------------------------------------------------------------------------------- /cosign_examples/cosign_policy_before.cue: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/cosign_policy_before.cue -------------------------------------------------------------------------------- /cosign_examples/digest.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/digest.json -------------------------------------------------------------------------------- /cosign_examples/enable_gitsign.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/enable_gitsign.sh -------------------------------------------------------------------------------- /cosign_examples/git_verify_commit.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/cosign_examples/git_verify_commit.sh -------------------------------------------------------------------------------- /deps_dev_examples/deps_dev_examples.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/deps_dev_examples/deps_dev_examples.sh -------------------------------------------------------------------------------- /distroless_examples/run_distroless_images.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/distroless_examples/run_distroless_images.sh -------------------------------------------------------------------------------- /docker_attach_container_example/attach_debug_container.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/docker_attach_container_example/attach_debug_container.sh -------------------------------------------------------------------------------- /generic_scripts/remove_all_images.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/generic_scripts/remove_all_images.sh -------------------------------------------------------------------------------- /generic_scripts/remove_images_with_no_tag.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/generic_scripts/remove_images_with_no_tag.sh -------------------------------------------------------------------------------- /image_history_inspect_examples/.gitignore: -------------------------------------------------------------------------------- 1 | * 2 | !.gitignore 3 | !*.sh 4 | -------------------------------------------------------------------------------- /image_history_inspect_examples/1_1_nginx_example_docker_crane.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/image_history_inspect_examples/1_1_nginx_example_docker_crane.sh -------------------------------------------------------------------------------- /image_history_inspect_examples/1_2_nginx_example_cosign.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/image_history_inspect_examples/1_2_nginx_example_cosign.sh -------------------------------------------------------------------------------- /image_history_inspect_examples/2_nginx_example_podman_skopeo.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/image_history_inspect_examples/2_nginx_example_podman_skopeo.sh -------------------------------------------------------------------------------- /image_history_inspect_examples/3_nerdctl_image_inspect.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/image_history_inspect_examples/3_nerdctl_image_inspect.sh -------------------------------------------------------------------------------- /install_scripts/install_bomber.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_bomber.sh -------------------------------------------------------------------------------- /install_scripts/install_containerd.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_containerd.sh -------------------------------------------------------------------------------- /install_scripts/install_cosign.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_cosign.sh -------------------------------------------------------------------------------- /install_scripts/install_crane.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_crane.sh -------------------------------------------------------------------------------- /install_scripts/install_cyclonedx.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | # Python 4 | pip install cyclonedx-bom 5 | -------------------------------------------------------------------------------- /install_scripts/install_dive.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_dive.sh -------------------------------------------------------------------------------- /install_scripts/install_docker.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_docker.sh -------------------------------------------------------------------------------- /install_scripts/install_go.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_go.sh -------------------------------------------------------------------------------- /install_scripts/install_grype_syft.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_grype_syft.sh -------------------------------------------------------------------------------- /install_scripts/install_hadolint.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_hadolint.sh -------------------------------------------------------------------------------- /install_scripts/install_jib.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_jib.sh -------------------------------------------------------------------------------- /install_scripts/install_k8s_tools.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_k8s_tools.sh -------------------------------------------------------------------------------- /install_scripts/install_ms_sbom_tool.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_ms_sbom_tool.sh -------------------------------------------------------------------------------- /install_scripts/install_nerdctl_buildkit.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_nerdctl_buildkit.sh -------------------------------------------------------------------------------- /install_scripts/install_oras.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_oras.sh -------------------------------------------------------------------------------- /install_scripts/install_pack.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_pack.sh -------------------------------------------------------------------------------- /install_scripts/install_podman_tools_fedora.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_podman_tools_fedora.sh -------------------------------------------------------------------------------- /install_scripts/install_podman_tools_ubuntu.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_podman_tools_ubuntu.sh -------------------------------------------------------------------------------- /install_scripts/install_sbom_scorecard.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_sbom_scorecard.sh -------------------------------------------------------------------------------- /install_scripts/install_sbom_tools.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_sbom_tools.sh -------------------------------------------------------------------------------- /install_scripts/install_semgrep.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_semgrep.sh -------------------------------------------------------------------------------- /install_scripts/install_task.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_task.sh -------------------------------------------------------------------------------- /install_scripts/install_trivy.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_trivy.sh -------------------------------------------------------------------------------- /install_scripts/install_trivy_fedora.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/install_scripts/install_trivy_fedora.sh -------------------------------------------------------------------------------- /kind_examples/1_install_kind.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/kind_examples/1_install_kind.sh -------------------------------------------------------------------------------- /kind_examples/2_1_create_kind_cluster_with_registry.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/kind_examples/2_1_create_kind_cluster_with_registry.sh -------------------------------------------------------------------------------- /kind_examples/2_2_test_kind_local_registry.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/kind_examples/2_2_test_kind_local_registry.sh -------------------------------------------------------------------------------- /kind_examples/2_3_crane_operations.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/kind_examples/2_3_crane_operations.sh -------------------------------------------------------------------------------- /kind_examples/3_0_show_node_labels.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | kubectl get nodes --show-labels 4 | -------------------------------------------------------------------------------- /kind_examples/3_1_get_nginx_ingress_controller_manifest.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/kind_examples/3_1_get_nginx_ingress_controller_manifest.sh -------------------------------------------------------------------------------- /kind_examples/3_2_install_nginx_ingress_controller.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/kind_examples/3_2_install_nginx_ingress_controller.sh -------------------------------------------------------------------------------- /kind_examples/3_3_apply_test_ingress.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | kubectl apply -f test_ingress.yaml 4 | -------------------------------------------------------------------------------- /kind_examples/ingress-nginx-deploy.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/kind_examples/ingress-nginx-deploy.yaml -------------------------------------------------------------------------------- /kind_examples/ingress_usage_example.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/kind_examples/ingress_usage_example.yaml -------------------------------------------------------------------------------- /kind_examples/test_ingress.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/kind_examples/test_ingress.yaml -------------------------------------------------------------------------------- /ko_sbom_examples/get_digest_and_sbom.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/ko_sbom_examples/get_digest_and_sbom.sh -------------------------------------------------------------------------------- /microk8s_examples/1_install_microk8s.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/microk8s_examples/1_install_microk8s.sh -------------------------------------------------------------------------------- /microk8s_examples/2_microk8s_operations.sh: -------------------------------------------------------------------------------- 1 | #!/bin/bash 2 | 3 | sudo microk8s kubectl get all --all-namespaces 4 | -------------------------------------------------------------------------------- /microk8s_examples/3_test_local_registry.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/microk8s_examples/3_test_local_registry.sh -------------------------------------------------------------------------------- /microk8s_examples/4_crane_operations.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/microk8s_examples/4_crane_operations.sh -------------------------------------------------------------------------------- /microk8s_examples/5_crane_push_jib_image_tar_to_ghcr.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/microk8s_examples/5_crane_push_jib_image_tar_to_ghcr.sh -------------------------------------------------------------------------------- /microk8s_examples/5_crane_push_jib_image_tar_to_local_registry.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/microk8s_examples/5_crane_push_jib_image_tar_to_local_registry.sh -------------------------------------------------------------------------------- /microk8s_examples/hello-server-deployment.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/microk8s_examples/hello-server-deployment.yaml -------------------------------------------------------------------------------- /oci_examples/1_inspect_image_dive.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/oci_examples/1_inspect_image_dive.sh -------------------------------------------------------------------------------- /oci_examples/2_crane_operations.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/oci_examples/2_crane_operations.sh -------------------------------------------------------------------------------- /oci_examples/3_oras_operations.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/oci_examples/3_oras_operations.sh -------------------------------------------------------------------------------- /oci_examples/4_regcli_operations.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/oci_examples/4_regcli_operations.sh -------------------------------------------------------------------------------- /oci_examples/5_skopeo_operations.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/oci_examples/5_skopeo_operations.sh -------------------------------------------------------------------------------- /podman_examples/podman_operations.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/podman_examples/podman_operations.sh -------------------------------------------------------------------------------- /podman_examples/skopeo_operations.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/podman_examples/skopeo_operations.sh -------------------------------------------------------------------------------- /runc_example/.gitignore: -------------------------------------------------------------------------------- 1 | myalpine 2 | -------------------------------------------------------------------------------- /runc_example/create_alpine_container.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/runc_example/create_alpine_container.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/.gitignore: -------------------------------------------------------------------------------- 1 | *.json 2 | *.sarif 3 | *.xml 4 | -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/bomber_inspect_sbom.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/bomber_inspect_sbom.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/grype_generate_json_from_syft_sbom.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/grype_generate_json_from_syft_sbom.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/grype_generate_sarif_from_image.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/grype_generate_sarif_from_image.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/grype_generate_sarif_from_syft_sbom.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/grype_generate_sarif_from_syft_sbom.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/inspect_hadolint_sarif.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/inspect_hadolint_sarif.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/inspect_sarif.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/inspect_sarif.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/run_sbom_scorecard.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/run_sbom_scorecard.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/sbom_manager_operations.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/sbom_manager_operations.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/sbom_utility_operations.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/sbom_utility_operations.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/syft_generate_sbom_json.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/syft_generate_sbom_json.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/syft_generate_sbom_spdx.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/syft_generate_sbom_spdx.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/trivy_generate_json.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/trivy_generate_json.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/trivy_generate_sarif.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/trivy_generate_sarif.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/trivy_generate_sbom_spdx.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/trivy_generate_sbom_spdx.sh -------------------------------------------------------------------------------- /scan_result_parsing_and_sbom_examples/trivy_scan_sbom_spdx.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/scan_result_parsing_and_sbom_examples/trivy_scan_sbom_spdx.sh -------------------------------------------------------------------------------- /slsa-verifier-examples/.gitignore: -------------------------------------------------------------------------------- 1 | katana* 2 | sbom-scorecard-attestation.json 3 | -------------------------------------------------------------------------------- /slsa-verifier-examples/extract_payload_from_intoto_attestation.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/slsa-verifier-examples/extract_payload_from_intoto_attestation.sh -------------------------------------------------------------------------------- /slsa-verifier-examples/run_slsa_verifier.sh: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/slsa-verifier-examples/run_slsa_verifier.sh -------------------------------------------------------------------------------- /slsa-verifier-examples/sbom-scorecard-attestation.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/slsa-verifier-examples/sbom-scorecard-attestation.json -------------------------------------------------------------------------------- /slsa-verifier-examples/sbom-scorecard-linux-amd64.intoto.jsonl: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/slsa-verifier-examples/sbom-scorecard-linux-amd64.intoto.jsonl -------------------------------------------------------------------------------- /taskfiles/.env: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/.env -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/.env: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/.env -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/alpine3.16-build/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/alpine3.16-build/Dockerfile -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/alpine3.16-build/Taskfile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/alpine3.16-build/Taskfile.yaml -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/alpine3.16-openjdk11/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/alpine3.16-openjdk11/Dockerfile -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/alpine3.16-openjdk11/Taskfile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/alpine3.16-openjdk11/Taskfile.yaml -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/alpine3.16-openjdk17/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/alpine3.16-openjdk17/Dockerfile -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/alpine3.16-openjdk17/Taskfile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/alpine3.16-openjdk17/Taskfile.yaml -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/alpine3.16-openjre11/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/alpine3.16-openjre11/Dockerfile -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/alpine3.16-openjre11/Taskfile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/alpine3.16-openjre11/Taskfile.yaml -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/alpine3.16-openjre17/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/alpine3.16-openjre17/Dockerfile -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/alpine3.16-openjre17/Taskfile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/alpine3.16-openjre17/Taskfile.yaml -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/alpine3.16-run/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/alpine3.16-run/Dockerfile -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/alpine3.16-run/Taskfile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/alpine3.16-run/Taskfile.yaml -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/alpine3.16-run/scan_results/trivy-dockerfile-Dockerfile.json: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/alpine3.16-run/scan_results/trivy-dockerfile-Dockerfile.json -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/ubuntu22.04-base/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/ubuntu22.04-base/Dockerfile -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/ubuntu22.04-base/Taskfile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/ubuntu22.04-base/Taskfile.yaml -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/ubuntu22.04-cicd/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/ubuntu22.04-cicd/Dockerfile -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/ubuntu22.04-cicd/Taskfile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/ubuntu22.04-cicd/Taskfile.yaml -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/ubuntu22.04-node16/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/ubuntu22.04-node16/Dockerfile -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/ubuntu22.04-node16/Taskfile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/ubuntu22.04-node16/Taskfile.yaml -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/ubuntu22.04-openjdk11/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/ubuntu22.04-openjdk11/Dockerfile -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/ubuntu22.04-openjdk11/Taskfile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/ubuntu22.04-openjdk11/Taskfile.yaml -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/ubuntu22.04-openjdk17/Dockerfile: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/ubuntu22.04-openjdk17/Dockerfile -------------------------------------------------------------------------------- /taskfiles/build-curated-docker-images/ubuntu22.04-openjdk17/Taskfile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-curated-docker-images/ubuntu22.04-openjdk17/Taskfile.yaml -------------------------------------------------------------------------------- /taskfiles/build-java-gradle-spring-music/Taskfile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-java-gradle-spring-music/Taskfile.yaml -------------------------------------------------------------------------------- /taskfiles/build-java-maven-sample-springboot/Taskfile-containerd.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-java-maven-sample-springboot/Taskfile-containerd.yaml -------------------------------------------------------------------------------- /taskfiles/build-java-maven-sample-springboot/Taskfile-docker.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-java-maven-sample-springboot/Taskfile-docker.yaml -------------------------------------------------------------------------------- /taskfiles/build-java-maven-sample-springboot/Taskfile.yaml: -------------------------------------------------------------------------------- 1 | Taskfile-docker.yaml -------------------------------------------------------------------------------- /taskfiles/build-jib-springboot-helloworld/Taskfile-containerd.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-jib-springboot-helloworld/Taskfile-containerd.yaml -------------------------------------------------------------------------------- /taskfiles/build-jib-springboot-helloworld/Taskfile.yaml: -------------------------------------------------------------------------------- 1 | Taskfile-containerd.yaml -------------------------------------------------------------------------------- /taskfiles/build-python-flask/Taskfile-docker.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-python-flask/Taskfile-docker.yaml -------------------------------------------------------------------------------- /taskfiles/build-python-flask/Taskfile-podman.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/build-python-flask/Taskfile-podman.yaml -------------------------------------------------------------------------------- /taskfiles/build-python-flask/Taskfile.yaml: -------------------------------------------------------------------------------- 1 | Taskfile-docker.yaml -------------------------------------------------------------------------------- /taskfiles/common/Taskfile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/common/Taskfile.yaml -------------------------------------------------------------------------------- /taskfiles/testing/Taskfile.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/griggheo/docker-deep-dive/HEAD/taskfiles/testing/Taskfile.yaml --------------------------------------------------------------------------------