Check class
A single check to perform against a Pod.
Checks are grouped into CheckSet objects, which are defined by the
top-level policy.
Constructors
- Check({bool? alwaysDeny, String? displayName, ImageAllowlist? imageAllowlist, ImageFreshnessCheck? imageFreshnessCheck, SigstoreSignatureCheck? sigstoreSignatureCheck, SimpleSigningAttestationCheck? simpleSigningAttestationCheck, SlsaCheck? slsaCheck, TrustedDirectoryCheck? trustedDirectoryCheck, VulnerabilityCheck? vulnerabilityCheck})
- Check.fromJson(Map json_)
Properties
- alwaysDeny ↔ bool?
- 
  A special-case check that always denies.
  getter/setter pair
- displayName ↔ String?
- 
  A user-provided name for this check.
  getter/setter pair
- hashCode → int
- 
  The hash code for this object.
  no setterinherited
- imageAllowlist ↔ ImageAllowlist?
- 
  Images exempted from this check.
  getter/setter pair
- imageFreshnessCheck ↔ ImageFreshnessCheck?
- 
  Require that an image is no older than a configured expiration time.
  getter/setter pair
- runtimeType → Type
- 
  A representation of the runtime type of the object.
  no setterinherited
- sigstoreSignatureCheck ↔ SigstoreSignatureCheck?
- 
  Require that an image was signed by Cosign with a trusted key.
  getter/setter pair
- simpleSigningAttestationCheck ↔ SimpleSigningAttestationCheck?
- 
  Require a SimpleSigning-type attestation for every image in the
deployment.
  getter/setter pair
- slsaCheck ↔ SlsaCheck?
- 
  Require that an image was built by a trusted builder (such as Google Cloud
Build), meets requirements for Supply chain Levels for Software Artifacts
(SLSA), and was built from a trusted source code repostitory.
  getter/setter pair
- trustedDirectoryCheck ↔ TrustedDirectoryCheck?
- 
  Require that an image lives in a trusted directory.
  getter/setter pair
- vulnerabilityCheck ↔ VulnerabilityCheck?
- 
  Require that an image does not contain vulnerabilities that violate the
configured rules, such as based on severity levels.
  getter/setter pair
Methods
- 
  noSuchMethod(Invocation invocation) → dynamic 
- 
  Invoked when a nonexistent method or property is accessed.
  inherited
- 
  toJson() → Map< String, dynamic> 
- 
  toString() → String 
- 
  A string representation of this object.
  inherited
Operators
- 
  operator ==(Object other) → bool 
- 
  The equality operator.
  inherited