What is Notary?
Notary is a set of tools that helps you sign, store, and verify OCI artifacts using OCI-conformant registries.
Why use Notary?
- Sign, store, and verify any OCI artifact, including container images
- Signing and verifying uses public/private key verification
- Signing does not change the
@digest
orartifact:tag
reference - Signatures are portable across OCI-conformant registries
- Support for multiple signatures
- Designed to support multiple development flows
Notary Project is a CNCF incubating project
