k8s-sidecar

Patched

Kubernetes & Orchestration from ghcr.io/kiwigrid/k8s-sidecar

Pull Reference

ghcr.io/verity-org/kiwigrid/k8s-sidecar

docker pull ghcr.io/verity-org/kiwigrid/k8s-sidecar

Copa-Patched Image

Patched in-place from the upstream image using Copa . OS-level vulnerabilities are fixed without rebuilding \u2014 same layers, same behavior, fewer CVEs.

Supply Chain

Full compliance details

Signed SLSA L3 SBOM Rekor

Verify this artifact

Cosign signature

cosign verify \
  --certificate-identity-regexp "https://github.com/verity-org/verity/.github/workflows/" \
  --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \
  ghcr.io/verity-org/kiwigrid/k8s-sidecar:2.3.0

Build provenance

gh attestation verify \
  oci://ghcr.io/verity-org/kiwigrid/k8s-sidecar:2.3.0 \
  --owner verity-org

Vulnerability Scan

Found 35 vulnerabilit ies in the original image. 35 fixed by Copa.

2CRITICAL7HIGH21MEDIUM5LOW

Source

Copa (in-place patch)

Platforms

linux/amd64, linux/arm64

Registry

ghcr.io/verity-org

Upstream

ghcr.io/kiwigrid/k8s-sidecar