Skip to content

Commit ef963d3

Browse files
author
Daniel Chadwick
committed
osdocs9673: creating sigstore modules
1 parent f9c8b1f commit ef963d3

File tree

3 files changed

+28
-0
lines changed

3 files changed

+28
-0
lines changed

_topic_maps/_topic_map.yml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -2623,6 +2623,8 @@ Topics:
26232623
File: nodes-sno-worker-nodes
26242624
- Name: Node metrics dashboard
26252625
File: nodes-dashboard-using
2626+
- Name: Manage secure signatures with sigstore
2627+
File: nodes-sigstore-using
26262628
---
26272629
Name: Windows Container Support for OpenShift
26282630
Dir: windows_containers
Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,9 @@
1+
// Module included in the following assemblies:
2+
//
3+
// * nodes/nodes-sigstore-using.adoc
4+
5+
:_mod-docs-content-type: CONCEPT
6+
[id="nodes-sigstore-using-about_{context}"]
7+
= About the sigstore project
8+
9+
The sigstore project enables developers to sign-off on what they build and administrators to verify signatures and monitor workflows at scale. With the sigstore project, signatures can be stored in the same registry as the build images. A second server is not needed. The identity piece of a signature is tied to the OpenID Connect (OIDC) identity through the Fulcio certificate authority, which simplifies the signature process by allowing key-less signing. Additionally, sigstore includes Rekor, which records signature metadata to an immutable, tamper-resistant ledger.

nodes/nodes-sigstore-using.adoc

Lines changed: 17 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,17 @@
1+
:_mod-docs-content-type: ASSEMBLY
2+
[id="nodes-sigstore-using"]
3+
= Manage secure signatures with sigstore
4+
include::_attributes/common-attributes.adoc[]
5+
:context: nodes-sigstore-using
6+
7+
toc::[]
8+
9+
You can use the sigstore project with {product-title} to improve supply chain security.
10+
11+
// The following include statements pull in the module files that comprise
12+
// the assembly. Include any combination of concept, procedure, or reference
13+
// modules required to cover the user story. You can also include other
14+
// assemblies.
15+
16+
// AManage secure signatures with SigStore
17+
include::modules/nodes-sigstore-using-about.adoc[leveloffset=+1]

0 commit comments

Comments
 (0)