cloud-security

OCI Artifact Security

Definition

OCI (Open Container Initiative) artifact security encompasses controls for signing, verifying, and attesting container images and other artifacts stored in OCI-compatible registries. The Notary v2/Notation specification and cosign (Sigstore) provide mechanisms to sign OCI artifacts with cryptographic signatures tied to developer or CI/CD system identities.

Admission controllers can enforce signature verification policies, blocking deployment of unsigned or unverified container images.

Related Terms

Code Signing

Sigstore

Sigstore Code Signing

Container Image Scanning

← Back to Glossary

Ship secure code faster

Crash Override integrates security into the developer workflow. No context switching, no waiting on reviews.

Talk to a Human See the Product