https://www.pistack.xyz/tags/image-signing/ Recent content in Image-Signing on Pi Stack Hugo en-us Thu, 18 Jun 2026 00:00:00 +0000 https://www.pistack.xyz/posts/2026-06-18-self-hosted-container-image-signing-policy-enforcement-kyverno-connaisseur-portieris-ratify/ Thu, 18 Jun 2026 00:00:00 +0000 https://www.pistack.xyz/posts/2026-06-18-self-hosted-container-image-signing-policy-enforcement-kyverno-connaisseur-portieris-ratify/ <h2 id="introduction">Introduction</h2> <p>Software supply chain attacks targeting container images have become one of the most critical security threats in cloud-native environments. When an attacker compromises a container image in your registry, every pod running that image inherits the compromise. The solution is cryptographic image signing — but signing alone is not enough. You need enforcement: a mechanism that blocks unsigned or tampered images from ever running in your cluster.</p>