cosign

Container Signing, Verification and Storage in an OCI registry. More information: https://github.com/sigstore/cosign.

cosign generate-key-pair

cosign sign -key cosign.key image

cosign sign -key k8s://namespace/key image

cosign sign-blob --key cosign.key path/to/file

cosign verify -key cosign.pub image

cosign dockerfile verify -key cosign.pub path/to/Dockerfile

cosign verify -key k8s://namespace/key image

cosign copy example.com/src:latest example.com/dest:latest