Class ContainerImageSignature (0.2.0)

ContainerImageSignature(mapping=None, *, ignore_unknown_fields=False, **kwargs)

ContainerImageSignature holds necessary metadata to verify a container image signature.

Attributes

NameDescription
payload bytes
Required. The binary signature payload following the SimpleSigning format https://github.com/sigstore/cosign/blob/main/specs/SIGNATURE_SPEC.md#simple-signing. This payload includes the container image digest.
signature bytes
Required. A signature over the payload. The container image digest is incorporated into the signature as follows: 1. Generate a SimpleSigning format payload that includes the container image digest. 2. Generate a signature over SHA256 digest of the payload. The signature generation process can be represented as follows: Sign(sha256(SimpleSigningPayload(sha256(Image Manifest))))
public_key bytes
Required. An associated public key used to verify the signature.
sig_alg google.cloud.confidentialcomputing_v1.types.SigningAlgorithm
Required. The algorithm used to produce the container image signature.