docker scout vex get

DescriptionGet VEX attestation for image
Usagedocker scout vex get OPTIONS IMAGE

Experimental

This command is experimental.

Experimental features are intended for testing and feedback as their functionality or design may change between releases without warning or can be removed entirely in a future release.

Description

The docker scout vex get command gets a VEX attestation for images.

Options

OptionDefaultDescription
--keyhttps://registry.scout.docker.com/keyring/dhi/latest.pubSignature key to use for verification
--orgNamespace of the Docker organization
-o, --outputWrite the report to a file
--platformPlatform of image to analyze
--refReference to use if the provided tarball contains multiple references.
Can only be used with archive
--skip-tlogSkip signature verification against public transaction log
--verifyVerify the signature on the attestation