options

package
v2.2.4 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Apr 10, 2024 License: Apache-2.0 Imports: 43 Imported by: 29

Documentation

Index

Constants

View Source 
const (
	PredicateCustom    = "custom"
	PredicateSLSA      = "slsaprovenance"
	PredicateSLSA02    = "slsaprovenance02"
	PredicateSLSA1     = "slsaprovenance1"
	PredicateSPDX      = "spdx"
	PredicateSPDXJSON  = "spdxjson"
	PredicateCycloneDX = "cyclonedx"
	PredicateLink      = "link"
	PredicateVuln      = "vuln"
	PredicateOpenVEX   = "openvex"
)
View Source 
const DefaultFulcioURL = "https://fulcio.sigstore.dev"
View Source 
const DefaultOIDCIssuerURL = "https://oauth2.sigstore.dev/auth"
View Source 
const DefaultRekorURL = "https://rekor.sigstore.dev"
View Source 
const DefaultTimeout = 3 * time.Minute

DefaultTimeout specifies the default timeout for commands.

View Source 
const EnvPrefix = "COSIGN"
View Source 
const SBOMAttachmentDeprecation = "WARNING: SBOM attachments are deprecated " +
	"and support will be removed in a Cosign release soon after 2024-02-22 " +
	"(see https://github.com/sigstore/cosign/issues/2755). " +
	"Instead, please use SBOM attestations."

Variables

View Source 
var PredicateTypeMap = map[string]string{
	PredicateCustom:    attestation.CosignCustomProvenanceV01,
	PredicateSLSA:      slsa02.PredicateSLSAProvenance,
	PredicateSLSA02:    slsa02.PredicateSLSAProvenance,
	PredicateSLSA1:     slsa1.PredicateSLSAProvenance,
	PredicateSPDX:      in_toto.PredicateSPDX,
	PredicateSPDXJSON:  in_toto.PredicateSPDX,
	PredicateCycloneDX: in_toto.PredicateCycloneDX,
	PredicateLink:      in_toto.PredicateLinkV1,
	PredicateVuln:      attestation.CosignVulnProvenanceV01,
	PredicateOpenVEX:   attestation.OpenVexNamespace,
}

PredicateTypeMap is the mapping between the predicate `type` option to predicate URI.

Functions

func BindViper 

func BindViper(cmd *cobra.Command, args []string)

func EnableExperimental 

func EnableExperimental() bool

func NOf 

func NOf(args ...interface{}) int

NOf returns how many of the fields are non-zero

func OneOf 

func OneOf(args ...interface{}) bool

OneOf ensures that only one of the supplied interfaces is set to a non-zero value.

func ParsePredicateType 

func ParsePredicateType(t string) (string, error)

ParsePredicateType parses the predicate `type` flag passed into a predicate URI, or validates `type` is a valid URI.

func UserAgent 

func UserAgent() string

UserAgent returns the User-Agent string which `cosign` should send with HTTP requests.ß

Types

type AnnotationOptions 

type AnnotationOptions struct {
	Annotations []string
}

AnnotationOptions is the top level wrapper for the annotations.

func (*AnnotationOptions) AddFlags 

func (o *AnnotationOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

func (*AnnotationOptions) AnnotationsMap 

func (o *AnnotationOptions) AnnotationsMap() (sigs.AnnotationsMap, error)

type AttachAttestationOptions 

type AttachAttestationOptions struct {
	Attestations []string
	Registry     RegistryOptions
}

AttachAttestationOptions is the top level wrapper for the attach attestation command.

func (*AttachAttestationOptions) AddFlags 

func (o *AttachAttestationOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type AttachSBOMOptions 

type AttachSBOMOptions struct {
	SBOM                 string
	SBOMType             string
	SBOMInputFormat      string
	Registry             RegistryOptions
	RegistryExperimental RegistryExperimentalOptions
}

AttachSBOMOptions is the top level wrapper for the attach sbom command.

func (*AttachSBOMOptions) AddFlags 

func (o *AttachSBOMOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

func (*AttachSBOMOptions) MediaType 

func (o *AttachSBOMOptions) MediaType() (types.MediaType, error)

type AttachSignatureOptions 

type AttachSignatureOptions struct {
	Signature      string
	Payload        string
	Cert           string
	CertChain      string
	TimeStampedSig string
	RekorBundle    string
	Registry       RegistryOptions
}

AttachSignatureOptions is the top level wrapper for the attach signature command.

func (*AttachSignatureOptions) AddFlags 

func (o *AttachSignatureOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type AttestBlobOptions 

type AttestBlobOptions struct {
	Key       string
	Cert      string
	CertChain string

	SkipConfirmation     bool
	TlogUpload           bool
	TSAServerURL         string
	RFC3161TimestampPath string

	Hash      string
	Predicate PredicateLocalOptions

	OutputSignature   string
	OutputAttestation string
	OutputCertificate string
	BundlePath        string

	RekorEntryType string

	Rekor       RekorOptions
	Fulcio      FulcioOptions
	OIDC        OIDCOptions
	SecurityKey SecurityKeyOptions
}

AttestOptions is the top level wrapper for the attest command.

func (*AttestBlobOptions) AddFlags 

func (o *AttestBlobOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type AttestOptions 

type AttestOptions struct {
	Key              string
	Cert             string
	CertChain        string
	NoUpload         bool
	Recursive        bool
	Replace          bool
	SkipConfirmation bool
	TlogUpload       bool
	TSAServerURL     string
	RekorEntryType   string

	Rekor       RekorOptions
	Fulcio      FulcioOptions
	OIDC        OIDCOptions
	SecurityKey SecurityKeyOptions
	Predicate   PredicateLocalOptions
	Registry    RegistryOptions
}

AttestOptions is the top level wrapper for the attest command.

func (*AttestOptions) AddFlags 

func (o *AttestOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type AttestationDownloadOptions 

type AttestationDownloadOptions struct {
	PredicateType string // Predicate type of attestation to retrieve
	Platform      string // Platform to download attestations
}

func (*AttestationDownloadOptions) AddFlags 

func (o *AttestationDownloadOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type CertVerifyOptions 

type CertVerifyOptions struct {
	Cert                         string
	CertIdentity                 string
	CertIdentityRegexp           string
	CertOidcIssuer               string
	CertOidcIssuerRegexp         string
	CertGithubWorkflowTrigger    string
	CertGithubWorkflowSha        string
	CertGithubWorkflowName       string
	CertGithubWorkflowRepository string
	CertGithubWorkflowRef        string
	CertChain                    string
	SCT                          string
	IgnoreSCT                    bool
}

CertVerifyOptions is the wrapper for certificate verification.

func (*CertVerifyOptions) AddFlags 

func (o *CertVerifyOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

func (*CertVerifyOptions) Identities 

func (o *CertVerifyOptions) Identities() ([]cosign.Identity, error)

type CleanOptions 

type CleanOptions struct {
	Registry  RegistryOptions
	CleanType CleanType
	Force     bool
}

func (*CleanOptions) AddFlags 

func (c *CleanOptions) AddFlags(cmd *cobra.Command)

type CleanType 

type CleanType string
const (
	CleanTypeSignature   CleanType = "signature"
	CleanTypeAttestation CleanType = "attestation"
	CleanTypeSbom        CleanType = "sbom"
	CleanTypeAll         CleanType = "all"
)

func (*CleanType) Set 

func (c *CleanType) Set(v string) error

cleanType implements github.com/spf13/pflag.Value.

func (*CleanType) String 

func (c *CleanType) String() string

cleanType implements github.com/spf13/pflag.Value.

func (*CleanType) Type 

func (c *CleanType) Type() string

cleanType implements github.com/spf13/pflag.Value.

type CommonVerifyOptions 

type CommonVerifyOptions struct {
	Offline          bool // Force offline verification
	TSACertChainPath string
	IgnoreTlog       bool
	MaxWorkers       int
	// This is added to CommonVerifyOptions to provide a path to support
	// it for other verify options.
	ExperimentalOCI11     bool
	PrivateInfrastructure bool
}

func (*CommonVerifyOptions) AddFlags 

func (o *CommonVerifyOptions) AddFlags(cmd *cobra.Command)

type CopyOptions 

type CopyOptions struct {
	CopyOnly      string
	SignatureOnly bool
	Force         bool
	Platform      string
	Registry      RegistryOptions
}

CopyOptions is the top level wrapper for the copy command.

func (*CopyOptions) AddFlags 

func (o *CopyOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type EnvOptions 

type EnvOptions struct {
	ShowDescriptions    bool
	ShowSensitiveValues bool
}

EnvOptions is the top level wrapper for the env command.

func (*EnvOptions) AddFlags 

func (o *EnvOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type FilesOptions 

type FilesOptions struct {
	Files []string
}

FilesOptions is the wrapper for the files.

func (*FilesOptions) AddFlags 

func (o *FilesOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

func (*FilesOptions) Parse 

func (o *FilesOptions) Parse() ([]cremote.File, error)

func (*FilesOptions) String 

func (o *FilesOptions) String() string

type FulcioOptions 

type FulcioOptions struct {
	URL                      string
	AuthFlow                 string
	IdentityToken            string
	InsecureSkipFulcioVerify bool
}

FulcioOptions is the wrapper for Fulcio related options.

func (*FulcioOptions) AddFlags 

func (o *FulcioOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type GenerateKeyPairOptions 

type GenerateKeyPairOptions struct {
	// KMS Key Management Service
	KMS             string
	OutputKeyPrefix string
}

GenerateKeyPairOptions is the top level wrapper for the generate-key-pair command.

func (*GenerateKeyPairOptions) AddFlags 

func (o *GenerateKeyPairOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type GenerateOptions 

type GenerateOptions struct {
	AnnotationOptions
	Registry RegistryOptions
}

GenerateOptions is the top level wrapper for the generate command.

func (*GenerateOptions) AddFlags 

func (o *GenerateOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type ImportKeyPairOptions 

type ImportKeyPairOptions struct {
	// Local key file generated by external program such as OpenSSL
	Key string

	// Filename used for outputted keys
	OutputKeyPrefix string

	SkipConfirmation bool
}

ImportKeyPairOptions is the top level wrapper for the import-key-pair command.

func (*ImportKeyPairOptions) AddFlags 

func (o *ImportKeyPairOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type InitializeOptions 

type InitializeOptions struct {
	Mirror string
	Root   string
}

InitializeOptions is the top level wrapper for the initialize command.

func (*InitializeOptions) AddFlags 

func (o *InitializeOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type Interface 

type Interface interface {
	// AddFlags adds this options' flags to the cobra command.
	AddFlags(cmd *cobra.Command)
}

type KeyOpts 

type KeyOpts struct {
	Sk                   bool
	Slot                 string
	KeyRef               string
	FulcioURL            string
	RekorURL             string
	IDToken              string
	PassFunc             cosign.PassFunc
	OIDCIssuer           string
	OIDCClientID         string
	OIDCClientSecret     string
	OIDCRedirectURL      string
	OIDCDisableProviders bool   // Disable OIDC credential providers in keyless signer
	OIDCProvider         string // Specify which OIDC credential provider to use for keyless signer
	BundlePath           string
	SkipConfirmation     bool
	TSAClientCACert      string
	TSAClientCert        string
	TSAClientKey         string
	TSAServerName        string // expected SAN field in the TSA server's certificate - https://pkg.go.dev/crypto/tls#Config.ServerName
	TSAServerURL         string
	RFC3161TimestampPath string
	TSACertChainPath     string
	// IssueCertificate controls whether to issue a certificate when a key is
	// provided.
	IssueCertificateForExistingKey bool

	// FulcioAuthFlow is the auth flow to use when authenticating against
	// Fulcio. See https://pkg.go.dev/github.com/sigstore/cosign/v2/cmd/cosign/cli/fulcio#pkg-constants
	// for valid values.
	FulcioAuthFlow string

	// Modeled after InsecureSkipVerify in tls.Config, this disables
	// verifying the SCT.
	InsecureSkipFulcioVerify bool
}

type KeyParseError 

type KeyParseError struct{}

KeyParseError is an error returned when an incorrect set of key flags are parsed by the CLI

func (*KeyParseError) Error 

func (e *KeyParseError) Error() string

type Keychain 

type Keychain = authn.Keychain

Keychain is an alias of authn.Keychain to expose this configuration option to consumers of this lib

type LoadOptions 

type LoadOptions struct {
	Directory string
	Registry  RegistryOptions
}

LoadOptions is the top level wrapper for the load command.

func (*LoadOptions) AddFlags 

func (o *LoadOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type OIDCOptions 

type OIDCOptions struct {
	Issuer   string
	ClientID string

	RedirectURL             string
	Provider                string
	DisableAmbientProviders bool
	// contains filtered or unexported fields
}

OIDCOptions is the wrapper for OIDC related options.

func (*OIDCOptions) AddFlags 

func (o *OIDCOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

func (*OIDCOptions) ClientSecret 

func (o *OIDCOptions) ClientSecret() (string, error)

type PIVToolAttestationOptions 

type PIVToolAttestationOptions struct {
	Output string
	Slot   string
}

PIVToolAttestationOptions is the wrapper for `piv-tool attestation` related options.

func (*PIVToolAttestationOptions) AddFlags 

func (o *PIVToolAttestationOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type PIVToolGenerateKeyOptions 

type PIVToolGenerateKeyOptions struct {
	ManagementKey string
	RandomKey     bool
	Slot          string
	PINPolicy     string
	TouchPolicy   string
}

PIVToolGenerateKeyOptions is the wrapper for `piv-tool generate-key` related options.

func (*PIVToolGenerateKeyOptions) AddFlags 

func (o *PIVToolGenerateKeyOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type PIVToolSetManagementKeyOptions 

type PIVToolSetManagementKeyOptions struct {
	OldKey    string
	NewKey    string
	RandomKey bool
}

PIVToolSetManagementKeyOptions is the wrapper for `piv-tool set-management-key` related options.

func (*PIVToolSetManagementKeyOptions) AddFlags 

func (o *PIVToolSetManagementKeyOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type PIVToolSetPINOptions 

type PIVToolSetPINOptions struct {
	OldPIN string
	NewPIN string
}

PIVToolSetPINOptions is the wrapper for `piv-tool set-pin` related options.

func (*PIVToolSetPINOptions) AddFlags 

func (o *PIVToolSetPINOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type PIVToolSetPUKOptions 

type PIVToolSetPUKOptions struct {
	OldPUK string
	NewPUK string
}

PIVToolSetPUKOptions is the wrapper for `piv-tool set-puk` related options.

func (*PIVToolSetPUKOptions) AddFlags 

func (o *PIVToolSetPUKOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type PIVToolUnblockOptions 

type PIVToolUnblockOptions struct {
	PUK    string
	NewPIN string
}

PIVToolUnblockOptions is the wrapper for `piv-tool unblock` related options.

func (*PIVToolUnblockOptions) AddFlags 

func (o *PIVToolUnblockOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type PKCS11ToolListKeysUrisOptions 

type PKCS11ToolListKeysUrisOptions struct {
	ModulePath string
	SlotID     uint
	Pin        string
}

PKCS11ToolListKeysUrisOptions is the wrapper for `pkcs11-tool list-keys-uris` related options.

func (*PKCS11ToolListKeysUrisOptions) AddFlags 

func (o *PKCS11ToolListKeysUrisOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type PKCS11ToolListTokensOptions 

type PKCS11ToolListTokensOptions struct {
	ModulePath string
}

PKCS11ToolListTokens is the wrapper for `pkcs11-tool list-tokens` related options.

func (*PKCS11ToolListTokensOptions) AddFlags 

func (o *PKCS11ToolListTokensOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type PredicateLocalOptions 

type PredicateLocalOptions struct {
	PredicateOptions
	Path string
}

PredicateLocalOptions is the wrapper for predicate related options.

func (*PredicateLocalOptions) AddFlags 

func (o *PredicateLocalOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type PredicateOptions 

type PredicateOptions struct {
	Type string
}

PredicateOptions is the wrapper for predicate related options.

func (*PredicateOptions) AddFlags 

func (o *PredicateOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type PredicateRemoteOptions 

type PredicateRemoteOptions struct {
	PredicateOptions
}

PredicateRemoteOptions is the wrapper for remote predicate related options.

func (*PredicateRemoteOptions) AddFlags 

func (o *PredicateRemoteOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type PubKeyParseError 

type PubKeyParseError struct{}

PubKeyParseError is an error returned when an incorrect set of public key flags are parsed by the CLI

func (*PubKeyParseError) Error 

func (e *PubKeyParseError) Error() string

type PublicKeyOptions 

type PublicKeyOptions struct {
	Key         string
	SecurityKey SecurityKeyOptions
	OutFile     string
}

PublicKeyOptions is the top level wrapper for the public-key command.

func (*PublicKeyOptions) AddFlags 

func (o *PublicKeyOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type ReferenceOptions 

type ReferenceOptions struct {
	TagPrefix string
}

ReferenceOptions is a wrapper for image reference options.

func (*ReferenceOptions) AddFlags 

func (o *ReferenceOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type RegistryExperimentalOptions 

type RegistryExperimentalOptions struct {
	RegistryReferrersMode RegistryReferrersMode
}

RegistryExperimentalOptions is the wrapper for the registry experimental options.

func (*RegistryExperimentalOptions) AddFlags 

func (o *RegistryExperimentalOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type RegistryOptions 

type RegistryOptions struct {
	AllowInsecure      bool
	AllowHTTPRegistry  bool
	KubernetesKeychain bool
	RefOpts            ReferenceOptions
	Keychain           Keychain
	AuthConfig         authn.AuthConfig

	// RegistryClientOpts allows overriding the result of GetRegistryClientOpts.
	RegistryClientOpts []remote.Option
}

RegistryOptions is the wrapper for the registry options.

func (*RegistryOptions) AddFlags 

func (o *RegistryOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

func (*RegistryOptions) ClientOpts 

func (o *RegistryOptions) ClientOpts(ctx context.Context) ([]ociremote.Option, error)

func (*RegistryOptions) GetRegistryClientOpts 

func (o *RegistryOptions) GetRegistryClientOpts(ctx context.Context) []remote.Option

func (*RegistryOptions) NameOptions 

func (o *RegistryOptions) NameOptions() []name.Option

type RegistryReferrersMode 

type RegistryReferrersMode string
const (
	RegistryReferrersModeLegacy RegistryReferrersMode = "legacy"
	RegistryReferrersModeOCI11  RegistryReferrersMode = "oci-1-1"
)

func (*RegistryReferrersMode) Set 

func (e *RegistryReferrersMode) Set(v string) error

func (*RegistryReferrersMode) String 

func (e *RegistryReferrersMode) String() string

func (*RegistryReferrersMode) Type 

func (e *RegistryReferrersMode) Type() string

type RekorOptions 

type RekorOptions struct {
	URL string
}

RekorOptions is the wrapper for Rekor related options.

func (*RekorOptions) AddFlags 

func (o *RekorOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type RootOptions 

type RootOptions struct {
	OutputFile string
	Verbose    bool
	Timeout    time.Duration
}

RootOptions define flags and options for the root cosign cli.

func (*RootOptions) AddFlags 

func (o *RootOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type SBOMDownloadOptions 

type SBOMDownloadOptions struct {
	Platform string // Platform to download sboms
}

DownloadOptions is the struct for control

func (*SBOMDownloadOptions) AddFlags 

func (o *SBOMDownloadOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type SaveOptions 

type SaveOptions struct {
	Directory string
}

SaveOptions is the top level wrapper for the load command.

func (*SaveOptions) AddFlags 

func (o *SaveOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type SecurityKeyOptions 

type SecurityKeyOptions struct {
	Use  bool
	Slot string
}

SecurityKeyOptions is the wrapper for security key related options.

func (*SecurityKeyOptions) AddFlags 

func (o *SecurityKeyOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type SignBlobOptions 

type SignBlobOptions struct {
	Key                  string
	Base64Output         bool
	Output               string // deprecated: TODO remove when the output flag is fully deprecated
	OutputSignature      string // TODO: this should be the root output file arg.
	OutputCertificate    string
	SecurityKey          SecurityKeyOptions
	Fulcio               FulcioOptions
	Rekor                RekorOptions
	OIDC                 OIDCOptions
	Registry             RegistryOptions
	BundlePath           string
	SkipConfirmation     bool
	TlogUpload           bool
	TSAClientCACert      string
	TSAClientCert        string
	TSAClientKey         string
	TSAServerName        string
	TSAServerURL         string
	RFC3161TimestampPath string
	IssueCertificate     bool
}

SignBlobOptions is the top level wrapper for the sign-blob command. The new output-certificate flag is only in use when COSIGN_EXPERIMENTAL is enabled

func (*SignBlobOptions) AddFlags 

func (o *SignBlobOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type SignOptions 

type SignOptions struct {
	Key                     string
	Cert                    string
	CertChain               string
	Upload                  bool
	Output                  string // deprecated: TODO remove when the output flag is fully deprecated
	OutputSignature         string // TODO: this should be the root output file arg.
	OutputPayload           string
	OutputCertificate       string
	PayloadPath             string
	Recursive               bool
	Attachment              string
	SkipConfirmation        bool
	TlogUpload              bool
	TSAClientCACert         string
	TSAClientCert           string
	TSAClientKey            string
	TSAServerName           string
	TSAServerURL            string
	IssueCertificate        bool
	SignContainerIdentity   string
	RecordCreationTimestamp bool

	Rekor       RekorOptions
	Fulcio      FulcioOptions
	OIDC        OIDCOptions
	SecurityKey SecurityKeyOptions
	AnnotationOptions
	Registry             RegistryOptions
	RegistryExperimental RegistryExperimentalOptions
}

SignOptions is the top level wrapper for the sign command.

func (*SignOptions) AddFlags 

func (o *SignOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type SignatureDigestOptions 

type SignatureDigestOptions struct {
	AlgorithmName string
}

SignatureDigestOptions holds options for specifying which digest algorithm should be used when processing a signature.

func (*SignatureDigestOptions) AddFlags 

func (o *SignatureDigestOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

func (*SignatureDigestOptions) HashAlgorithm 

func (o *SignatureDigestOptions) HashAlgorithm() (crypto.Hash, error)

HashAlgorithm converts the algorithm's name - provided as a string - into a crypto.Hash algorithm. Returns an error if the algorithm name doesn't match a supported algorithm, and defaults to SHA256 in the event that the given algorithm is invalid.

type TreeOptions 

type TreeOptions struct {
	Registry  RegistryOptions
	CleanType string
}

func (*TreeOptions) AddFlags 

func (c *TreeOptions) AddFlags(cmd *cobra.Command)

type TriangulateOptions 

type TriangulateOptions struct {
	Type     string
	Registry RegistryOptions
}

TriangulateOptions is the top level wrapper for the triangulate command.

func (*TriangulateOptions) AddFlags 

func (o *TriangulateOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type UploadBlobOptions 

type UploadBlobOptions struct {
	ContentType string
	Files       FilesOptions
	Registry    RegistryOptions
	Annotations map[string]string
}

UploadBlobOptions is the top level wrapper for the `upload blob` command.

func (*UploadBlobOptions) AddFlags 

func (o *UploadBlobOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type UploadWASMOptions 

type UploadWASMOptions struct {
	File     string
	Registry RegistryOptions
}

UploadWASMOptions is the top level wrapper for the `upload wasm` command.

func (*UploadWASMOptions) AddFlags 

func (o *UploadWASMOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type VerifyAttestationOptions 

type VerifyAttestationOptions struct {
	Key         string
	CheckClaims bool
	Output      string

	CommonVerifyOptions CommonVerifyOptions
	SecurityKey         SecurityKeyOptions
	Rekor               RekorOptions
	CertVerify          CertVerifyOptions
	Registry            RegistryOptions
	Predicate           PredicateRemoteOptions
	Policies            []string
	LocalImage          bool
}

VerifyAttestationOptions is the top level wrapper for the `verify attestation` command.

func (*VerifyAttestationOptions) AddFlags 

func (o *VerifyAttestationOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type VerifyBlobAttestationOptions 

type VerifyBlobAttestationOptions struct {
	Key           string
	SignaturePath string
	BundlePath    string

	PredicateOptions
	CheckClaims bool

	SecurityKey         SecurityKeyOptions
	CertVerify          CertVerifyOptions
	Rekor               RekorOptions
	CommonVerifyOptions CommonVerifyOptions

	RFC3161TimestampPath string
}

VerifyBlobAttestationOptions is the top level wrapper for the `verify-blob-attestation` command.

func (*VerifyBlobAttestationOptions) AddFlags 

func (o *VerifyBlobAttestationOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type VerifyBlobOptions 

type VerifyBlobOptions struct {
	Key        string
	Signature  string
	BundlePath string

	SecurityKey         SecurityKeyOptions
	CertVerify          CertVerifyOptions
	Rekor               RekorOptions
	CommonVerifyOptions CommonVerifyOptions

	RFC3161TimestampPath string
}

VerifyBlobOptions is the top level wrapper for the `verify blob` command.

func (*VerifyBlobOptions) AddFlags 

func (o *VerifyBlobOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type VerifyDockerfileOptions 

type VerifyDockerfileOptions struct {
	VerifyOptions
	BaseImageOnly bool
}

VerifyDockerfileOptions is the top level wrapper for the `dockerfile verify` command.

func (*VerifyDockerfileOptions) AddFlags 

func (o *VerifyDockerfileOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

type VerifyOptions 

type VerifyOptions struct {
	Key          string
	CheckClaims  bool
	Attachment   string
	Output       string
	SignatureRef string
	PayloadRef   string
	LocalImage   bool

	CommonVerifyOptions CommonVerifyOptions
	SecurityKey         SecurityKeyOptions
	CertVerify          CertVerifyOptions
	Rekor               RekorOptions
	Registry            RegistryOptions
	SignatureDigest     SignatureDigestOptions

	AnnotationOptions
}

VerifyOptions is the top level wrapper for the `verify` command.

func (*VerifyOptions) AddFlags 

func (o *VerifyOptions) AddFlags(cmd *cobra.Command)

AddFlags implements Interface

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.