Attestation - CI/CD用語集の定義
Attestation は、artifact に関する署名付きで機械検証可能な主張 (build provenance や scanning に合格したことなど) で、policy engine が deploy 前にチェックします。
関連ガイド
Provenance - CI/CD Glossary DefinitionProvenance is verifiable metadata describing how an artifact was built - source, builder, and inputs - lettin…
Code Signing - CI/CD Glossary DefinitionCode signing attaches a cryptographic signature to an artifact so consumers can verify it came from the expec…
Vulnerability Scanning - CI/CD Glossary DefinitionVulnerability scanning checks code, dependencies, or images against CVE databases and flags or fails CI when…