security

Code Signing

Definition

Code signing uses asymmetric cryptography to attach a digital signature to software artifacts, proving they were produced by a known publisher and have not been modified since signing. Operating systems and package managers verify signatures before execution or installation, blocking tampered or unsigned software.

Code signing is required for macOS/Windows apps and is increasingly enforced in container registries.

Related Terms

PKI

Public Key Infrastructure

Sigstore

Sigstore Code Signing

Supply Chain Security

Software Supply Chain Security

← Back to Glossary

Ship secure code faster

Crash Override integrates security into the developer workflow. No context switching, no waiting on reviews.

Talk to a Human See the Product