TEP-0091: Trusted Resources milestone 2 work before Beta #6356
Description
This issue is tracking relevant features before we could promo trusted resources to Beta.
If you have any other requirements, feel free to leave comments on this issue.
/kind feature
Background: In this PR tektoncd/community#949, we proposed several features for trusted resources. Those could help the project to meet more users need.
Checklist:
- Feature flag change from
resources-verificaiton-modetotrusted-resources-verification-no-match-policy. - [TEP-0091] change feature flag resource-verification-mode to trusted-resources-verification-no-match-policy #6324
- Add condition to reflect verification failure/success. [TEP-0091] Add condition to reflect verification failure/success. #6665
- Add a new field "mode" with "warn" and "enforce" as available values.
- Add mode field in api: [TEP-0091] Add mode for VerificationPolicy #6328
- Use mode in reconciler, if mode if empty, it should be treated as
enforce: [TEP-0091] use verification mode in trusted resources #6406
- Support v1 Tasks&Pipelines: [TEP-0091] Support v1 Tasks&Pipelines for trusted resources #6729
- support in remote resolution: Add conversion for remote tasks and pipelines to support v1 #6254
- support in trusted resources in task and pipeline
Future work:
- Support local tasks and pipelines: [TEP-0091] Support local resources verification #6666
- Clean up code (rename "expected-want" in tests, clean error logs) Refactor trusted resources test code #5820