Signature Verification for GitLab CI Pipeline Images #4122
kristi-balla
started this conversation in
Ideas
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
I recently came across
cosign dockerfile verify ...and think that something similar for gitlab-ci pipelines would be suitable. That would make auditing easier for developer teams.I am willing to take this over, but I wanted to assess the necessity for this feature within the community. So, what do you guys think?
Beta Was this translation helpful? Give feedback.
All reactions