[bitnami/cosign] Release 2.0.0-debian-11-r0 (#25816)

Signed-off-by: Bitnami Containers <bitnami-bot@vmware.com>

bitnami/cosign/2/debian-11/Dockerfile

@@ -0,0 +1,50 @@
+FROM docker.io/bitnami/minideb:bullseye
+
+ARG TARGETARCH
+
+LABEL org.opencontainers.image.base.name="docker.io/bitnami/minideb:bullseye" \
+      org.opencontainers.image.created="2023-03-01T18:13:31Z" \
+      org.opencontainers.image.description="Application packaged by VMware, Inc" \
+      org.opencontainers.image.licenses="Apache-2.0" \
+      org.opencontainers.image.ref.name="2.0.0-debian-11-r0" \
+      org.opencontainers.image.title="cosign" \
+      org.opencontainers.image.vendor="VMware, Inc." \
+      org.opencontainers.image.version="2.0.0"
+
+ENV HOME="/" \
+    OS_ARCH="${TARGETARCH:-amd64}" \
+    OS_FLAVOUR="debian-11" \
+    OS_NAME="linux"
+
+COPY prebuildfs /
+SHELL ["/bin/bash", "-o", "pipefail", "-c"]
+# Install required system packages and dependencies
+RUN install_packages ca-certificates curl procps
+RUN mkdir -p /tmp/bitnami/pkg/cache/ && cd /tmp/bitnami/pkg/cache/ && \
+    COMPONENTS=( \
+      "cosign-2.0.0-0-linux-${OS_ARCH}-debian-11" \
+    ) && \
+    for COMPONENT in "${COMPONENTS[@]}"; do \
+      if [ ! -f "${COMPONENT}.tar.gz" ]; then \
+        curl -SsLf "https://downloads.bitnami.com/files/stacksmith/${COMPONENT}.tar.gz" -O ; \
+        curl -SsLf "https://downloads.bitnami.com/files/stacksmith/${COMPONENT}.tar.gz.sha256" -O ; \
+      fi && \
+      sha256sum -c "${COMPONENT}.tar.gz.sha256" && \
+      tar -zxf "${COMPONENT}.tar.gz" -C /opt/bitnami --strip-components=2 --no-same-owner --wildcards '*/files' && \
+      rm -rf "${COMPONENT}".tar.gz{,.sha256} ; \
+    done
+RUN apt-get autoremove --purge -y curl && \
+    apt-get update && apt-get upgrade -y && \
+    apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives
+RUN chmod g+rwX /opt/bitnami
+RUN mkdir -p "/cosign-keys" && chmod -R 777 "/cosign-keys"
+RUN mkdir /.sigstore && chmod g+rwX /.sigstore
+
+ENV APP_VERSION="2.0.0" \
+    BITNAMI_APP_NAME="cosign" \
+    PATH="/opt/bitnami/cosign/bin:$PATH"
+
+WORKDIR /cosign-keys
+USER 1001
+ENTRYPOINT [ "cosign" ]
+CMD [ "--help" ]

bitnami/cosign/2/debian-11/docker-compose.yml

@@ -0,0 +1,4 @@
+version: '2'
+services:
+  cosign:
+    image: docker.io/bitnami/cosign:2

bitnami/cosign/2/debian-11/prebuildfs/opt/bitnami/.bitnami_components.json

@@ -0,0 +1,9 @@
+{
+    "cosign": {
+        "arch": "amd64",
+        "digest": "3c8452b02654d0f00557c98666b82b71735011ea3d167466a349ad533bc49c43",
+        "distro": "debian-11",
+        "type": "NAMI",
+        "version": "2.0.0-0"
+    }
+}

bitnami/cosign/2/debian-11/prebuildfs/opt/bitnami/licenses/licenses.txt

@@ -0,0 +1,3 @@
+Bitnami containers ship with software bundles. You can find the licenses at:
+https://bitnami.com/open-source
+/opt/bitnami/[name-of-bundle]/licenses/[bundle-version].txt

bitnami/cosign/2/debian-11/prebuildfs/usr/sbin/install_packages

@@ -0,0 +1,25 @@
+#!/bin/sh
+set -eu
+
+n=0
+max=2
+export DEBIAN_FRONTEND=noninteractive
+
+until [ $n -gt $max ]; do
+    set +e
+    (
+      apt-get update -qq &&
+      apt-get install -y --no-install-recommends "$@"
+    )
+    CODE=$?
+    set -e
+    if [ $CODE -eq 0 ]; then
+        break
+    fi
+    if [ $n -eq $max ]; then
+        exit $CODE
+    fi
+    echo "apt failed, retrying"
+    n=$(($n + 1))
+done
+apt-get clean && rm -rf /var/lib/apt/lists /var/cache/apt/archives

bitnami/cosign/2/debian-11/tags-info.yaml

@@ -0,0 +1,5 @@
+rolling-tags:
+- "2"
+- 2-debian-11
+- 2.0.0
+- latest

bitnami/cosign/docker-compose.yml

@@ -1,4 +1,4 @@
 version: '2'
 services:
   cosign:
-    image: docker.io/bitnami/cosign:1
+    image: docker.io/bitnami/cosign:2