On publishing, could the resulting image include a verifiable signature?
TheBellman opened this issue · comments
Robert Hook commented
It would be useful for enterprise deployments if a deployable container could be verified to have emerged from a controlled pipeline.