calltheory/public-keys
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Update README.md

Browse source
This commit is contained in:
Patrick Labbett 2026-04-29 21:58:02 +00:00
parent 8c0ab6996f
commit 576a0a27dd
1 changed files with 10 additions and 4 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

14
README.md
View file

@ -2,11 +2,17 @@
Call Theory public keys for verification of signed containers from our container registery.
## Call Theory SSH Public Key
- [calltheory.pub](calltheory.pub)
> Add to your `authorized_keys` file for the
## Verifying Calltheory container images
All images published to `cr.calltheory.com/orbital/*` are signed with Cosign.
## Install cosign
### Install cosign
```bash
curl -sSL -o /usr/local/bin/cosign \
@ -14,19 +20,19 @@ curl -sSL -o /usr/local/bin/cosign \
chmod +x /usr/local/bin/cosign
```
## Get the public key
### Get the public key
```bash
curl -O https://git.calltheory.com/calltheory/public-keys/raw/branch/main/keys/cosign.pub
```
## Verify an image
### Verify an image
```bash
cosign verify --key cosign.pub cr.calltheory.com/orbital/smoketest@sha256:abc123...
```
## Verify in Kubernetes
### Verify in Kubernetes
For automated verification, install *Sigstore Policy Controller* or
similar admission controller and configure it to trust this key for