Using artifact attestations
Use artifact attestations to establish build provenance for the software you produce and to verify the software you consume.
Using artifact attestations to establish provenance for builds
Artifact attestations enable you to increase the supply chain security of your builds by establishing where and how your software was built.
Using artifact attestations and reusable workflows to achieve SLSA v1 Build Level 3
Building software with reusable workflows and artifact attestations can streamline your supply chain security and help you achieve SLSA v1.0 Build Level 3.
Enforcing artifact attestations with a Kubernetes admission controller
Use an admission controller to enforce artifact attestations in your Kubernetes cluster.
Verifying attestations offline
Artifact attestations can be verified without an internet connection.