logo
search
COLLAPSE ALL
  • Home
  • About Pixie
    • Pixie Overview
    • Data Sources
    • How Pixie uses eBPF
    • Roadmap
    • FAQ
    • Troubleshooting
  • Installing Pixie
    • Requirements
  • Using Pixie
    • Using the Live UI
    • Using the CLI
    • Using the API
  • Tutorials
  • Reference
    • Admin
      • Authentication
      • Debug Info
      • Deploy Options
      • Environment-Specific Configurations
      • Find a Cluster ID
      • Managing API Keys
      • Managing Deploy Keys
      • Tuning Memory Usage
      • Uninstalling Pixie
      • Updating Pixie
      • User Management & Sharing
      • Verifying Images
    • Architecture

Verifying Images

Pixie’s container images are signed with cosign. Each image is signed with Pixie’s private key and can be verified using Pixie’s public key. This can help you ensure the images you are running and deploying to your cluster are trustworthy.

Verifying a Container

  1. Download cosign by following the instructions here.

  2. Run cosign to verify the image:

cosign verify --key https://px.dev/cosign.pub <image path>
  1. Running cosign verify will log the verification to stdout and return an exit code of 0 if the signature matches the public key.
This site uses cookies to provide you with a better user experience. By using Pixie, you consent to our use of cookies.