Class ContainerImageSignature (0.4.7)

ContainerImageSignature(mapping=None, *, ignore_unknown_fields=False, **kwargs)

ContainerImageSignature holds necessary metadata to verify a container image signature.

Attributes

NameDescription
payload bytes
Optional. The binary signature payload following the SimpleSigning format https://github.com/sigstore/cosign/blob/main/specs/SIGNATURE_SPEC.md#simple-signing. This payload includes the container image digest.
signature bytes
Optional. A signature over the payload. The container image digest is incorporated into the signature as follows: 1. Generate a SimpleSigning format payload that includes the container image digest. 2. Generate a signature over SHA256 digest of the payload. The signature generation process can be represented as follows: Sign(sha256(SimpleSigningPayload(sha256(Image Manifest))))
public_key bytes
Optional. Reserved for future use.
sig_alg google.cloud.confidentialcomputing_v1.types.SigningAlgorithm
Optional. Reserved for future use.