Supply Chain Security with Cosign and Kyverno for On-premise Kubernetes

Supply chain security is becoming more critical to any serious cloud adopters. This paper explores how the container image in a private registry can be verified to be what it claimed to be and enforced by the verification policy.

Toolings and Environment