Handle images without attestations

[MrMarkW]

How will this service support handling images that don't have attestations in the github org?

Many clusters will have a mix of 3rd party and private images where only the private images would have attestations in Github.

[kommendorkapten]

Hi.

They would simply be ignored. So only attested images would be tracked by GitHub. There are features to disable certain namespaces, or only monitor some depending on your needs.