devguard icon indicating copy to clipboard operation
devguard copied to clipboard
verified publisher icon l3montree-dev

Support for Adding Attestation to Containers Using COSIGN Vulnerability Attestation Specification

Open timbastin opened this issue 1 year ago • 1 comments

timbastin avatar Mar 21 '24 08:03 timbastin

Related to #328 - needs to be implemented in devguard scanner. Attstations should be uploaded to devguard and to the container registry. They should be signed using cosign and the provided devguard token.

timbastin avatar Apr 02 '25 22:04 timbastin

this is already implemented.

timbastin avatar Jun 04 '25 13:06 timbastin