-- Leo's gemini proxy
-- Connecting to freeshell.de:1965...
-- Connected
-- Sending request
-- Meta line: 20 text/gemini;lang=en-GB
> Container Signing, Verification and Storage in an OCI registry.
Generate a key-pair:
cosign generate-key-pair
Sign a container and store the signature in the registry:
cosign sign -key {cosign.key} {image}
Sign a container image with a key pair stored in a Kubernetes secret:
cosign sign -key k8s://{namespace}/{key} {image}
Sign a blob with a local key pair file:
cosign sign-blob --key {cosign.key} {file}
Verify a container against a public key:
cosign verify -key {cosign.pub} {image}
Verify images with a public key in a Dockerfile:
cosign dockerfile verify -key {cosign.pub} {path/to/Dockerfile}
Verify an image with a public key stored in a Kubernetes secret:
cosign verify -key k8s://{namespace}/{key} {image}
Copy a container image and its signatures:
cosign copy {example.com/src:latest} {example.com/dest:latest}
> Copyright © 2014—present the tldr-pages team and contributors.
> This work is licensed under the Creative Commons Attribution 4.0 International License (CC-BY).
-- Response ended
-- Page fetched on Tue May 21 05:27:15 2024