slsa-verifier
Verify provenance from SLSA compliant builders.
Installation
dagger install github.com/sagikazarmark/daggerverse/slsa-verifier@157bf2192a7a1e8672da2c4fee37d8710734c35a
Entrypoint
Return Type
SlsaVerifier !
Arguments
Name | Type | Description |
---|---|---|
version | String | No description provided |
Example
func (m *myModule) example() *SlsaVerifier {
return dag.
SlsaVerifier()
}
@function
def example() -> dag.SlsaVerifier:
return (
dag.slsa_verifier()
)
@func()
example(): SlsaVerifier {
return dag
.slsaVerifier()
}
Types
SlsaVerifier 🔗
verifyArtifact() 🔗
Verifies SLSA provenance on artifact blobs given as arguments (assuming same provenance).
Return Type
Container !
Arguments
Name | Type | Default Value | Description |
---|---|---|---|
artifacts | [File ! ] ! | - | No description provided |
provenance | File ! | - | No description provided |
sourceUri | String ! | - | No description provided |
builderId | String | - | No description provided |
sourceBranch | String | - | No description provided |
sourceTag | String | - | No description provided |
sourceVersionedTag | String | - | No description provided |
Example
dagger -m github.com/sagikazarmark/daggerverse/slsa-verifier@157bf2192a7a1e8672da2c4fee37d8710734c35a call \
verify-artifact --provenance file:path --source-uri string
func (m *myModule) example(artifacts []*File, provenance *File, sourceUri string) *Container {
return dag.
SlsaVerifier().
VerifyArtifact(artifacts, provenance, sourceUri)
}
@function
def example(artifacts: List[dagger.File], provenance: dagger.File, source_uri: str) -> dagger.Container:
return (
dag.slsa_verifier()
.verify_artifact(artifacts, provenance, source_uri)
)
@func()
example(artifacts: File[], provenance: File, sourceUri: string): Container {
return dag
.slsaVerifier()
.verifyArtifact(artifacts, provenance, sourceUri)
}