Supply Chain Security with Cosign and Kyverno for On-premise Kubernetes
Published in
5 min readApr 18, 2022
Supply chain security is becoming more critical to any serious cloud adopters. This paper explores how the container image in a private registry can be verified to be what it claimed to be and enforced by the verification policy.