Text file src/github.com/sigstore/cosign/v2/doc/cosign_copy.md

Documentation: github.com/sigstore/cosign/v2/doc

     1## cosign copy
     2
     3Copy the supplied container image and signatures.
     4
     5```
     6cosign copy [flags]
     7```
     8
     9### Examples
    10
    11```
    12  cosign copy <source image> <destination image>
    13
    14  # copy a container image and its signatures
    15  cosign copy example.com/src:latest example.com/dest:latest
    16
    17  # copy the signatures only
    18  cosign copy --only=sig example.com/src example.com/dest
    19
    20  # copy the signatures, attestations, sbom only
    21  cosign copy --only=sig,att,sbom example.com/src example.com/dest
    22
    23  # overwrite destination image and signatures
    24  cosign copy -f example.com/src example.com/dest
    25
    26  # copy a container image and its signatures for a specific platform
    27  cosign copy --platform=linux/amd64 example.com/src:latest example.com/dest:latest
    28```
    29
    30### Options
    31
    32```
    33      --allow-http-registry                                                                      whether to allow using HTTP protocol while connecting to registries. Don't use this for anything but testing
    34      --allow-insecure-registry                                                                  whether to allow insecure connections to registries (e.g., with expired or self-signed TLS certificates). Don't use this for anything but testing
    35      --attachment-tag-prefix [AttachmentTagPrefix]sha256-[TargetImageDigest].[AttachmentName]   optional custom prefix to use for attached image tags. Attachment images are tagged as: [AttachmentTagPrefix]sha256-[TargetImageDigest].[AttachmentName]
    36  -f, --force                                                                                    overwrite destination image(s), if necessary
    37  -h, --help                                                                                     help for copy
    38      --k8s-keychain                                                                             whether to use the kubernetes keychain instead of the default keychain (supports workload identity).
    39      --only string                                                                              custom string array to only copy specific items, this flag is comma delimited. ex: --only=sbom,sign,att
    40      --platform string                                                                          only copy container image and its signatures for a specific platform image
    41      --registry-password string                                                                 registry basic auth password
    42      --registry-token string                                                                    registry bearer auth token
    43      --registry-username string                                                                 registry basic auth username
    44      --sig-only                                                                                 [DEPRECATED] only copy the image signature
    45```
    46
    47### Options inherited from parent commands
    48
    49```
    50      --output-file string   log output to a file
    51  -t, --timeout duration     timeout for commands (default 3m0s)
    52  -d, --verbose              log debug output
    53```
    54
    55### SEE ALSO
    56
    57* [cosign](cosign.md)	 - A tool for Container Signing, Verification and Storage in an OCI registry.
    58

View as plain text