artifact sign - Endor Labs Documentation

Use the artifact [ sign \| verify ] command to sign and verify container images and other build artifacts.

Usage

To sign an artifact, use the following command.

endorctl artifact sign --name <artifact> --source-repository-ref <ref> --certificate-oidc-issuer <issuer>

To verify a signed artifact, use the following command.

endorctl verify --name <artifact> --certificate-oidc-issuer <issuer>`

To revoke a signature, use the following command.

endorctl artifact revoke-signature --name <artifact> --source-repository-ref <ref>

Options

You can use the following flags and environment variables: For endorctl artifact sign For endorctl artifact verify For endorctl artifact [revoke-signature]

scan

sync-org

⌘I

Usage
Options

Developers & API

​Usage

​Options

Usage

Options