Linux command
apptainer-sign 命令
文本
复制后可按需替换文件名、目录或参数。
常用示例
Sign
apptainer sign [path/to/image.sif]
Example
apptainer sign --key [path/to/private.pem] [path/to/image.sif]
Example
apptainer sign -k [key_index] [path/to/image.sif]
Example
apptainer sign -g [group_id] [path/to/image.sif]
Example
apptainer sign -i [object_id] [path/to/image.sif]
说明
apptainer sign adds digital signatures to SIF container images, enabling verification of image integrity and authenticity. Signatures can use PGP keys or X.509 certificates. Signing containers is essential for establishing trust in shared container images and meeting security requirements in production environments.
参数
- --key _file_
- Path to a private key file for signing
- -k, --keyidx _index_
- Index of the PGP key to use from the keyring
- -g, --group-id _id_
- Sign only a specific object group within the SIF
- -i, --sif-id _id_
- Sign only a specific object by ID within the SIF
FAQ
What is the apptainer-sign command used for?
apptainer sign adds digital signatures to SIF container images, enabling verification of image integrity and authenticity. Signatures can use PGP keys or X.509 certificates. Signing containers is essential for establishing trust in shared container images and meeting security requirements in production environments.
How do I run a basic apptainer-sign example?
Run `apptainer sign [path/to/image.sif]` in a terminal, then adjust file names, paths, flags, or remote targets for your system.
What does --key _file_ do in apptainer-sign?
Path to a private key file for signing