⚠️ Not ready for use yet!
sigstore CLI is a generic tool to sign blobs, tarballs etc and establish a trust root using the sigstore signing infrastructure
Should you discover any security issues, please refer to sigstores security process
For container signing, you want cosign