calltheory/public-keys
2
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
public-keys/README.md
Patrick 576a0a27dd Update README.md
2026-04-29 21:58:02 +00:00

981 B
Raw Blame History

Public Keys

Call Theory public keys for verification of signed containers from our container registery.

Call Theory SSH Public Key

Add to your authorized_keys file for the

Verifying Calltheory container images

All images published to cr.calltheory.com/orbital/* are signed with Cosign.

Install cosign

curl -sSL -o /usr/local/bin/cosign \
    https://github.com/sigstore/cosign/releases/latest/download/cosign-linux-amd64
chmod +x /usr/local/bin/cosign

Get the public key

curl -O https://git.calltheory.com/calltheory/public-keys/raw/branch/main/keys/cosign.pub

Verify an image

cosign verify --key cosign.pub cr.calltheory.com/orbital/smoketest@sha256:abc123...

Verify in Kubernetes

For automated verification, install Sigstore Policy Controller or similar admission controller and configure it to trust this key for images matching cr.calltheory.com/orbital/*.