Documentation
¶
Overview ¶
Package cosignhelper implements cosign verification functionality using cosign libraries
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type CosignVerifyOptions ¶
type CosignVerifyOptions struct {
// PublicKeyPath is the path to custom public key to be used to verify the signature
// of the OCI image. If the path is empty, the CLI embedded public key would be used
PublicKeyPath string
// RegistryOpts registry options used while interacting with registry
RegistryOpts *RegistryOptions
}
CosignVerifyOptions implements the "cosign verify" command using cosign library
type Cosignhelper ¶
type Cosignhelper interface {
// Verify verifies the signature on the images using cosign library
Verify(ctx context.Context, images []string) error
}
Cosignhelper is the interface to provide wrapper implementation for cosign libraries
func NewCosignVerifier ¶
func NewCosignVerifier(publicKeyPath string, registryOpts *RegistryOptions) Cosignhelper
type RegistryOptions ¶ added in v0.90.0
type RegistryOptions struct {
// CACertPaths is the path to CA certs for the registry endpoint.
// This would be required if the registry is self-signed
CACertPaths []string
// SkipCertVerify is to allow insecure connections to registries (e.g., with expired or self-signed TLS certificates)
SkipCertVerify bool
// AllowInsecure is to allow using HTTP instead of HTTPS protocol while connecting to registries
AllowInsecure bool
}
RegistryOptions registry options used while interacting with registry
Source Files
Directories
¶
| Path | Synopsis |
|---|---|
|
Package sigverifier implements helper functions to verify inventory image signature
|
Package sigverifier implements helper functions to verify inventory image signature |
Click to show internal directories.
Click to hide internal directories.