[TEP-0089] Add a config map to support SPIRE initialization.

This PR is one among the set of PRs done to implement TEP-0089. This PR has been derived from the larger PRs PR#5715 and PR#4759 by @pxp928 and @lumjjb. This PR is addressing the problem of non-falisfiable provenance discussed in TEP-0089. SPIRE is a tool which provides cryptographic identities to workloads in a cluster. These identities are also associated with a key pair, which can be used to sign TaskRun results to track if they have been modified by other workloads. Using SPIRE is one of the ways to address non-falsifiable provenance. This PR has the following changes 1. Modify the feature flag to control non-falsifiability from enable-spire to enforce-nonfalsifiability="spire". This is in accordance to the approved TEP. 2. Add a configmap config-spire to initialize SPIRE. Signed-off-by: jagathprakash <31057312+jagathprakash@users.noreply.github.com>
tektoncd · Jan 25, 2023 · 21618b6 · 21618b6
1 parent 8e57df1
commit 21618b6
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/docs/deprecations.md b/docs/deprecations.md
@@ -26,4 +26,4 @@ being deprecated.
 | [`v1alpha1.Run` is deprecated](https://github.com/tektoncd/community/blob/main/teps/0114-custom-tasks-beta.md)                                                                                                               | v0.43.0                                                              | Alpha                                                                                                  | April 10, 2023 or v0.47.0           |
 | [ClusterTask is deprecated](https://github.com/tektoncd/pipeline/issues/4476)                                                                                                                                                | v0.41.0                                                              | Beta                                                                                                   | July 13, 2023                       |
 | [`pipelineRef.bundle` and `taskRef.bundle` are deprecated](https://github.com/tektoncd/pipeline/issues/5514)                                                                                                                 | v0.41.0                                                              | Alpha                                                                                                  | July 13, 2023                       |
-| [`taskrun.status.cloudEvents` are deprecated](https://github.com/tektoncd/community/blob/main/teps/0074-deprecate-pipelineresources.md)                                                                                     | v0.44.0                                                              | Alpha                                                                                                  | Oct 11, 2023                        |
+| [`taskrun.status.cloudEvents` are deprecated](https://github.com/tektoncd/community/blob/main/teps/0074-deprecate-pipelineresources.md)                                                                                      | v0.44.0                                                              | Alpha                                                                                                  | Oct 11, 2023                        |