logo
Free, unlimited AI code reviews that run on commit
git-lrc git-lrc GitHub Install Now We'd appreciate a star git-lrc - Free, unlimited AI code reviews that run on commit | Product Hunt git-lrc - Free, unlimited AI code reviews that run on commit | Product Hunt

Rekor-cli - Verify Software Supply Chain Metadata | Online Free DevTools by Hexmos

Verify software supply chain metadata with rekor-cli. Audit artifact integrity and ensure tamper resistance using transparency logs. Free online tool, no registration required.

rekor-cli

Immutable tamper resistant ledger of metadata generated within a software projects supply chain. More information: https://github.com/sigstore/rekor.

  • Upload an artifact to Rekor:

rekor-cli upload --artifact {{path/to/file.ext}} --signature {{path/to/file.ext.sig}} --pki-format={{x509}} --public-key={{path/to/key.pub}}

  • Get information regarding entries in the Transparency Log:

rekor-cli get --uuid={{0e81b4d9299e2609e45b5c453a4c0e7820ac74e02c4935a8b830d104632fd2d1}}

  • Search the Rekor index to find entries by Artifact:

rekor-cli search --artifact {{path/to/file.ext}}

  • Search the Rekor index to find entries by a specific hash:

rekor-cli search --sha {{6b86b273ff34fce19d6b804eff5a3f5747ada4eaa22f1d49c01e52ddb7875b4b}}

See Also

Man Pages
rekor Man Pages
Artifact
Artifact PNG Icons
Man Pages
Path Man Pages
Man Pages
npm Man Pages
Man Pages
acl_entries Man Pages
Filing
Filing PNG Icons
Man Pages
Metadata Man Pages
Information
Information PNG Icons
Transparency
Transparency PNG Icons
← Back to common commands← tldr🙏  Credits & Acknowledgments