https://socake.github.io/tags/%E9%95%9C%E5%83%8F%E7%AD%BE%E5%90%8D/Recent content in 镜像签名 on 黄文卓 | DevOps EngineerHugo -- gohugo.iozh-CN17691281867@163.com (Wenzhuo Huang)17691281867@163.com (Wenzhuo Huang)© 2026 Wenzhuo HuangFri, 17 Oct 2025 10:00:00 +0800https://socake.github.io/posts/sigstore-cosign-signing-workflow/Fri, 17 Oct 2025 10:00:00 +080017691281867@163.com (Wenzhuo Huang)https://socake.github.io/posts/sigstore-cosign-signing-workflow/一份 Sigstore 生产化落地笔记：讲清楚 Fulcio/Rekor/Cosign 三件套的工作原理，演示 GitHub Actions 和 GitLab CI 下的 keyless 签名流水线，对接 Kyverno/Policy Controller 做准入验证，并分享签名验证性能、Rekor 不可用降级、多签策略等真实运维经验。