Back to search results
cosign owner avatar

cosign

Code signing and transparency for containers and binaries

Tool
Minimal

Install package

Latest
min add cosign
Source archive SHA256
ea2f4094…cd89
Spec hash
8df2f7fe…2d0a
Target
amd64/linux
Needs network
Yes
Closed source
No

Quick links

[ Docs ] [ Changelog ] [ Repo ] [ Security ] [ SBOM ]

What is cosign?

Code signing and transparency for containers and binaries

How to use this package

Quick install

Installs the package into the current environment for this session. Use --build or --runtime to persist it as a build-time or runtime dependency.

min add cosign

Declare as a task dependency in minimal.toml

Listing the package under tasks.<name>.packages makes it available inside that task’s sandbox.

[tasks.dev]
packages = ["cosign"]

Build-time vs runtime

Choose build-time for tools needed during compilation, runtime for dynamic libraries loaded at runtime.

min add --build cosign
min add --runtime cosign