Switch 'sigstore-probe' to copy the prober from the image rather than rebuilding every execution #130
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Summary
Start work on #94. We currently see a fair amount of build flakiness (failed to fetch go library X) in the GitHub sigstore probes. By reducing this to two fetches (crane and the OCI image), we should hopefully see less flakiness.
Or I screwed everything up, and one probe will alert and we'll roll this back before trying again. (I'll try to get this running in my fork as well, but I wanted to offer this for review since I'd been sitting on it half-done for a while.)
Release Note
sigstore-probe
probes in staging and production.Documentation
No documentation needed.