1## cosign
2
3A tool for Container Signing, Verification and Storage in an OCI registry.
4
5### Options
6
7```
8 -h, --help help for cosign
9 --output-file string log output to a file
10 -t, --timeout duration timeout for commands (default 3m0s)
11 -d, --verbose log debug output
12```
13
14### SEE ALSO
15
16* [cosign attach](cosign_attach.md) - Provides utilities for attaching artifacts to other artifacts in a registry
17* [cosign attest](cosign_attest.md) - Attest the supplied container image.
18* [cosign attest-blob](cosign_attest-blob.md) - Attest the supplied blob.
19* [cosign clean](cosign_clean.md) - Remove all signatures from an image.
20* [cosign completion](cosign_completion.md) - Generate completion script
21* [cosign copy](cosign_copy.md) - Copy the supplied container image and signatures.
22* [cosign dockerfile](cosign_dockerfile.md) - Provides utilities for discovering images in and performing operations on Dockerfiles
23* [cosign download](cosign_download.md) - Provides utilities for downloading artifacts and attached artifacts in a registry
24* [cosign env](cosign_env.md) - Prints Cosign environment variables
25* [cosign generate](cosign_generate.md) - Generates (unsigned) signature payloads from the supplied container image.
26* [cosign generate-key-pair](cosign_generate-key-pair.md) - Generates a key-pair.
27* [cosign import-key-pair](cosign_import-key-pair.md) - Imports a PEM-encoded RSA or EC private key.
28* [cosign initialize](cosign_initialize.md) - Initializes SigStore root to retrieve trusted certificate and key targets for verification.
29* [cosign load](cosign_load.md) - Load a signed image on disk to a remote registry
30* [cosign login](cosign_login.md) - Log in to a registry
31* [cosign manifest](cosign_manifest.md) - Provides utilities for discovering images in and performing operations on Kubernetes manifests
32* [cosign piv-tool](cosign_piv-tool.md) - Provides utilities for managing a hardware token
33* [cosign pkcs11-tool](cosign_pkcs11-tool.md) - Provides utilities for retrieving information from a PKCS11 token.
34* [cosign public-key](cosign_public-key.md) - Gets a public key from the key-pair.
35* [cosign save](cosign_save.md) - Save the container image and associated signatures to disk at the specified directory.
36* [cosign sign](cosign_sign.md) - Sign the supplied container image.
37* [cosign sign-blob](cosign_sign-blob.md) - Sign the supplied blob, outputting the base64-encoded signature to stdout.
38* [cosign tree](cosign_tree.md) - Display supply chain security related artifacts for an image such as signatures, SBOMs and attestations
39* [cosign triangulate](cosign_triangulate.md) - Outputs the located cosign image reference. This is the location where cosign stores the specified artifact type.
40* [cosign upload](cosign_upload.md) - Provides utilities for uploading artifacts to a registry
41* [cosign verify](cosign_verify.md) - Verify a signature on the supplied container image
42* [cosign verify-attestation](cosign_verify-attestation.md) - Verify an attestation on the supplied container image
43* [cosign verify-blob](cosign_verify-blob.md) - Verify a signature on the supplied blob
44* [cosign verify-blob-attestation](cosign_verify-blob-attestation.md) - Verify an attestation on the supplied blob
45* [cosign version](cosign_version.md) - Prints the version
46
View as plain text