trustedBuilder property

Each verification rule is used for evaluation against provenances generated by a specific builder (group).

For some of the builders, such as the Google Cloud Build, users don't need to explicitly specify their roots of trust in the policy since the evaluation service can automatically fetch them based on the builder (group). Possible string values are:

• "BUILDER_UNSPECIFIED" : Should never happen.
• "GOOGLE_CLOUD_BUILD" : The whole Google Cloud Build (GCB) builder group, including all GCB builder types.