How to use cosign gatekeeper provider to validate signed images before pulling them

Question

How to use cosign gatekeeper provider to validate signed images before pulling them

akshaygit opened this issue 3 months ago · 0 comments

Question
Dear maintainers,
I am looking for cosign gatekeeper policies or resources for validating signed images. We have a requirement where we want to block the images which are not signed and only pull cosign verified signed images.
Any help will be greatly appreciated. Thanks in advance.