diff --git a/api/kyverno/v1/image_verification_types.go b/api/kyverno/v1/image_verification_types.go
index b110b91918..71e454e7c5 100644
--- a/api/kyverno/v1/image_verification_types.go
+++ b/api/kyverno/v1/image_verification_types.go
@@ -151,10 +151,10 @@ type StaticKeyAttestor struct {
}
type SecretReference struct {
- // name of the secret
+ // Name of the secret. The provided secret must contain a key named cosign.pub.
Name string `json:"name" yaml:"name"`
- // namespace name in which secret is created
+ // Namespace name where the Secret exists.
Namespace string `json:"namespace" yaml:"namespace"`
}
diff --git a/charts/kyverno/templates/crds.yaml b/charts/kyverno/templates/crds.yaml
index 666672436e..73d551a6aa 100644
--- a/charts/kyverno/templates/crds.yaml
+++ b/charts/kyverno/templates/crds.yaml
@@ -2461,10 +2461,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -2768,10 +2768,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -4240,10 +4240,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -4547,10 +4547,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -6008,10 +6008,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -6305,10 +6305,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -7762,10 +7762,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -8069,10 +8069,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -10132,10 +10132,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -10439,10 +10439,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -11911,10 +11911,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -12218,10 +12218,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -13679,10 +13679,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -13976,10 +13976,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -15433,10 +15433,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
@@ -15740,10 +15740,10 @@ spec:
description: Reference to a Secret resource that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The provided secret must contain a key named cosign.pub.
type: string
namespace:
- description: namespace name in which secret is created
+ description: Namespace name where the Secret exists.
type: string
required:
- name
diff --git a/config/crds/kyverno.io_clusterpolicies.yaml b/config/crds/kyverno.io_clusterpolicies.yaml
index 3957319dcf..f14a1bb5a7 100644
--- a/config/crds/kyverno.io_clusterpolicies.yaml
+++ b/config/crds/kyverno.io_clusterpolicies.yaml
@@ -2324,11 +2324,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -2785,11 +2787,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The
+ provided secret must contain a key
+ named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -5236,11 +5240,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name
- in which secret is created
+ description: Namespace name
+ where the Secret exists.
type: string
required:
- name
@@ -5710,11 +5716,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in
- which secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -7985,11 +7993,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -8431,11 +8441,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The
+ provided secret must contain a key
+ named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -10857,11 +10869,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name
- in which secret is created
+ description: Namespace name
+ where the Secret exists.
type: string
required:
- name
@@ -11331,11 +11345,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in
- which secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
diff --git a/config/crds/kyverno.io_policies.yaml b/config/crds/kyverno.io_policies.yaml
index ec56fa1579..1bb74a9b1f 100644
--- a/config/crds/kyverno.io_policies.yaml
+++ b/config/crds/kyverno.io_policies.yaml
@@ -2325,11 +2325,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -2786,11 +2788,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The
+ provided secret must contain a key
+ named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -5238,11 +5242,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name
- in which secret is created
+ description: Namespace name
+ where the Secret exists.
type: string
required:
- name
@@ -5712,11 +5718,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in
- which secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -7988,11 +7996,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -8434,11 +8444,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The
+ provided secret must contain a key
+ named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -10860,11 +10872,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name
- in which secret is created
+ description: Namespace name
+ where the Secret exists.
type: string
required:
- name
@@ -11334,11 +11348,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in
- which secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
diff --git a/config/install.yaml b/config/install.yaml
index ac9fcc3549..489c1f3736 100644
--- a/config/install.yaml
+++ b/config/install.yaml
@@ -3646,11 +3646,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -4107,11 +4109,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The
+ provided secret must contain a key
+ named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -4200,9 +4204,9 @@ spec:
type: object
type: array
schemaValidation:
- description: SchemaValidation skips policy validation checks. Optional.
- The default value is set to "true", it must be set to "false" to
- disable the validation checks.
+ description: SchemaValidation skips validation checks for policies
+ as well as patched resources. Optional. The default value is set
+ to "true", it must be set to "false" to disable the validation checks.
type: boolean
validationFailureAction:
default: audit
@@ -6558,11 +6562,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name
- in which secret is created
+ description: Namespace name
+ where the Secret exists.
type: string
required:
- name
@@ -7032,11 +7038,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in
- which secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -9307,11 +9315,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -9753,11 +9763,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The
+ provided secret must contain a key
+ named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -9821,9 +9833,9 @@ spec:
type: object
type: array
schemaValidation:
- description: SchemaValidation skips policy validation checks. Optional.
- The default value is set to "true", it must be set to "false" to
- disable the validation checks.
+ description: SchemaValidation skips validation checks for policies
+ as well as patched resources. Optional. The default value is set
+ to "true", it must be set to "false" to disable the validation checks.
type: boolean
validationFailureAction:
default: audit
@@ -12179,11 +12191,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name
- in which secret is created
+ description: Namespace name
+ where the Secret exists.
type: string
required:
- name
@@ -12653,11 +12667,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in
- which secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -15745,11 +15761,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -16206,11 +16224,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The
+ provided secret must contain a key
+ named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -16299,9 +16319,9 @@ spec:
type: object
type: array
schemaValidation:
- description: SchemaValidation skips policy validation checks. Optional.
- The default value is set to "true", it must be set to "false" to
- disable the validation checks.
+ description: SchemaValidation skips validation checks for policies
+ as well as patched resources. Optional. The default value is set
+ to "true", it must be set to "false" to disable the validation checks.
type: boolean
validationFailureAction:
default: audit
@@ -18658,11 +18678,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name
- in which secret is created
+ description: Namespace name
+ where the Secret exists.
type: string
required:
- name
@@ -19132,11 +19154,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in
- which secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -21408,11 +21432,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -21854,11 +21880,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The
+ provided secret must contain a key
+ named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -21922,9 +21950,9 @@ spec:
type: object
type: array
schemaValidation:
- description: SchemaValidation skips policy validation checks. Optional.
- The default value is set to "true", it must be set to "false" to
- disable the validation checks.
+ description: SchemaValidation skips validation checks for policies
+ as well as patched resources. Optional. The default value is set
+ to "true", it must be set to "false" to disable the validation checks.
type: boolean
validationFailureAction:
default: audit
@@ -24280,11 +24308,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name
- in which secret is created
+ description: Namespace name
+ where the Secret exists.
type: string
required:
- name
@@ -24754,11 +24784,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in
- which secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
diff --git a/config/install_debug.yaml b/config/install_debug.yaml
index aaff31cd33..ed75cb86d5 100644
--- a/config/install_debug.yaml
+++ b/config/install_debug.yaml
@@ -3640,11 +3640,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -4101,11 +4103,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The
+ provided secret must contain a key
+ named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -4194,9 +4198,9 @@ spec:
type: object
type: array
schemaValidation:
- description: SchemaValidation skips policy validation checks. Optional.
- The default value is set to "true", it must be set to "false" to
- disable the validation checks.
+ description: SchemaValidation skips validation checks for policies
+ as well as patched resources. Optional. The default value is set
+ to "true", it must be set to "false" to disable the validation checks.
type: boolean
validationFailureAction:
default: audit
@@ -6552,11 +6556,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name
- in which secret is created
+ description: Namespace name
+ where the Secret exists.
type: string
required:
- name
@@ -7026,11 +7032,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in
- which secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -9301,11 +9309,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -9747,11 +9757,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The
+ provided secret must contain a key
+ named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -9815,9 +9827,9 @@ spec:
type: object
type: array
schemaValidation:
- description: SchemaValidation skips policy validation checks. Optional.
- The default value is set to "true", it must be set to "false" to
- disable the validation checks.
+ description: SchemaValidation skips validation checks for policies
+ as well as patched resources. Optional. The default value is set
+ to "true", it must be set to "false" to disable the validation checks.
type: boolean
validationFailureAction:
default: audit
@@ -12173,11 +12185,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name
- in which secret is created
+ description: Namespace name
+ where the Secret exists.
type: string
required:
- name
@@ -12647,11 +12661,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in
- which secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -15736,11 +15752,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -16197,11 +16215,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The
+ provided secret must contain a key
+ named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -16290,9 +16310,9 @@ spec:
type: object
type: array
schemaValidation:
- description: SchemaValidation skips policy validation checks. Optional.
- The default value is set to "true", it must be set to "false" to
- disable the validation checks.
+ description: SchemaValidation skips validation checks for policies
+ as well as patched resources. Optional. The default value is set
+ to "true", it must be set to "false" to disable the validation checks.
type: boolean
validationFailureAction:
default: audit
@@ -18649,11 +18669,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name
- in which secret is created
+ description: Namespace name
+ where the Secret exists.
type: string
required:
- name
@@ -19123,11 +19145,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in
- which secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -21399,11 +21423,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -21845,11 +21871,13 @@ spec:
that contains a public key
properties:
name:
- description: name of the secret
+ description: Name of the secret. The
+ provided secret must contain a key
+ named cosign.pub.
type: string
namespace:
- description: namespace name in which
- secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
@@ -21913,9 +21941,9 @@ spec:
type: object
type: array
schemaValidation:
- description: SchemaValidation skips policy validation checks. Optional.
- The default value is set to "true", it must be set to "false" to
- disable the validation checks.
+ description: SchemaValidation skips validation checks for policies
+ as well as patched resources. Optional. The default value is set
+ to "true", it must be set to "false" to disable the validation checks.
type: boolean
validationFailureAction:
default: audit
@@ -24271,11 +24299,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name
- in which secret is created
+ description: Namespace name
+ where the Secret exists.
type: string
required:
- name
@@ -24745,11 +24775,13 @@ spec:
key
properties:
name:
- description: name of the secret
+ description: Name of the secret.
+ The provided secret must contain
+ a key named cosign.pub.
type: string
namespace:
- description: namespace name in
- which secret is created
+ description: Namespace name where
+ the Secret exists.
type: string
required:
- name
diff --git a/docs/user/crd/index.html b/docs/user/crd/index.html
index 23d3b63a3c..9517a934c5 100644
--- a/docs/user/crd/index.html
+++ b/docs/user/crd/index.html
@@ -3338,7 +3338,7 @@ string
|
- name of the secret
+Name of the secret. The provided secret must contain a key named cosign.pub.
|
@@ -3349,7 +3349,7 @@ string
|
- namespace name in which secret is created
+Namespace name where the Secret exists.
|