Closed vishal-chdhry closed 3 months ago
This is working as intended. Certificates should conform to Fulcio's certificate profile which means that an identity should be included. Otherwise, we expect that the key will be extracted from the certificate and passed to Cosign for signature verification.
Description
Cosign verify displays an example where the user can pass an image with certificate and certchain. But that example does not work on v2.2.4 and
main
. It detects keyless verification and ask for identity flags:Expected Behaviour
Cosign verify should work with only cert and cert chain.
Version
Built from main