Document how to sign and verify build artifacts (!125935) · Merge requests · GitLab.org / GitLab

Alishan Ladhani requested to merge ali/docs-keyless-signing-of-build-artifacts into master Jul 10, 2023

What does this MR do and why?

Example pipeline: https://gitlab.com/ali-gitlab/cosign-demo/-/pipelines/928004336. See sign_artifact and verify_artifact jobs.

Related to #414341 (closed)

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Jul 11, 2023 by Alishan Ladhani

Document how to sign and verify build artifacts

What does this MR do and why?

MR acceptance checklist

Merge request reports