https://socake.github.io/tags/sigstore/ Recent content in Sigstore on 黄文卓 | DevOps Engineer Hugo -- gohugo.io zh-CN 17691281867@163.com (Wenzhuo Huang) 17691281867@163.com (Wenzhuo Huang) © 2026 Wenzhuo Huang Fri, 17 Oct 2025 10:00:00 +0800 https://socake.github.io/posts/sigstore-cosign-signing-workflow/ Fri, 17 Oct 2025 10:00:00 +0800 17691281867@163.com (Wenzhuo Huang) https://socake.github.io/posts/sigstore-cosign-signing-workflow/ 一份 Sigstore 生产化落地笔记：讲清楚 Fulcio/Rekor/Cosign 三件套的工作原理，演示 GitHub Actions 和 GitLab CI 下的 keyless 签名流水线，对接 Kyverno/Policy Controller 做准入验证，并分享签名验证性能、Rekor 不可用降级、多签策略等真实运维经验。