cosignhelper

package
v1.2.0-alpha.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Jan 9, 2024 License: Apache-2.0 Imports: 17 Imported by: 0

Documentation

Overview

Package cosignhelper implements cosign verification functionality using cosign libraries

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

This section is empty.

Types

type CosignVerifyOptions

type CosignVerifyOptions struct {
	// PublicKeyPath is the path to custom public key to be used to verify the signature
	// of the OCI image. If the path is empty, the CLI embedded public key would be used
	PublicKeyPath string
	// RegistryOpts registry options used while interacting with registry
	RegistryOpts *RegistryOptions
}

CosignVerifyOptions implements the "cosign verify" command using cosign library

func (*CosignVerifyOptions) Verify

func (vo *CosignVerifyOptions) Verify(ctx context.Context, images []string) error

Verify verifies the signature on the images

type Cosignhelper

type Cosignhelper interface {
	// Verify verifies the signature on the images using cosign library
	Verify(ctx context.Context, images []string) error
}

Cosignhelper is the interface to provide wrapper implementation for cosign libraries

func NewCosignVerifier

func NewCosignVerifier(publicKeyPath string, registryOpts *RegistryOptions) Cosignhelper

type RegistryOptions added in v0.90.0

type RegistryOptions struct {
	// CACertPaths is the path to CA certs for the registry endpoint.
	// This would be required if the registry is self-signed
	CACertPaths []string
	// SkipCertVerify is to allow insecure connections to registries (e.g., with expired or self-signed TLS certificates)
	SkipCertVerify bool
	// AllowInsecure is to allow using HTTP instead of HTTPS protocol while connecting to registries
	AllowInsecure bool
}

RegistryOptions registry options used while interacting with registry

Directories

Path Synopsis
Package sigverifier implements helper functions to verify inventory image signature
Package sigverifier implements helper functions to verify inventory image signature

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL