Status: IN
The end-to-end image supply chain (build→ImageStream→registry for apps, FBC→OLM→CSV for operators) operates entirely within OpenShift's governance model: identity management controls who can push/pull/prune images, RBAC governs ImageStream access via get-layers permissions, and namespace-scoped quotas constrain resource consumption — making image delivery a governed pipeline, not an open one.
depth-4 synthesis — the image pipeline is not just delivery mechanics; it is gated by the full governance stack
Depends on (SL): governance-spans-identity-resources-and-namespaces, image-supply-chain-end-to-end