[工具详情]
cosign
Container image and artifact signing CLI from Sigstore.
security 语言: all
[适用场景]推荐
- ✓ Sign or verify container images and artifacts
[不适用场景]避免
- ✕ Signing identity, keyless flow, or registry target is unclear
[安全约束]必须遵守
- ⚠ Verify identity, registry, and artifact digest before signing.
[详细信息]原始元数据
- 命令
- cosign
- 影响
- network_access, requires_auth, remote_write, secret_exposure
[类似工具]03