On publishing, could the resulting image include a verifiable signature?

[TheBellman]

It would be useful for enterprise deployments if a deployable container could be verified to have emerged from a controlled pipeline.