ContainerImageSignature holds necessary metadata to verify a
container image signature.
Attributes
Name
Description
payload
bytes
Optional. The binary signature payload following the
SimpleSigning format
https://github.com/sigstore/cosign/blob/main/specs/SIGNATURE_SPEC.md#simple-signing.
This payload includes the container image digest.
signature
bytes
Optional. A signature over the payload. The container image
digest is incorporated into the signature as follows:
1. Generate a SimpleSigning format payload that includes the
container image digest.
2. Generate a signature over SHA256 digest of the payload.
The signature generation process can be represented as
follows:
Sign(sha256(SimpleSigningPayload(sha256(Image Manifest))))
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-07 UTC."],[],[],null,["# Class ContainerImageSignature (0.4.18)\n\nVersion latestkeyboard_arrow_down\n\n- [0.4.18 (latest)](/python/docs/reference/confidentialcomputing/latest/google.cloud.confidentialcomputing_v1.types.ContainerImageSignature)\n- [0.4.17](/python/docs/reference/confidentialcomputing/0.4.17/google.cloud.confidentialcomputing_v1.types.ContainerImageSignature)\n- [0.3.0](/python/docs/reference/confidentialcomputing/0.3.0/google.cloud.confidentialcomputing_v1.types.ContainerImageSignature)\n- [0.2.0](/python/docs/reference/confidentialcomputing/0.2.0/google.cloud.confidentialcomputing_v1.types.ContainerImageSignature)\n- [0.1.1](/python/docs/reference/confidentialcomputing/0.1.1/google.cloud.confidentialcomputing_v1.types.ContainerImageSignature) \n\n ContainerImageSignature(mapping=None, *, ignore_unknown_fields=False, **kwargs)\n\nContainerImageSignature holds necessary metadata to verify a\ncontainer image signature."]]
