DirectorySecurity AdvisoriesPricing
/
Sign in
Directory
cosign logo

cosign

Last changed

Try a starter image for free
docker pull cgr.dev/chainguard/cosign

Need access to a specific tag? Contact us.

Create your free account

Integrate Chainguard into your developer workflows, manage your image versions to stay free of CVEs, and view critical SBOM and provenance details.

Sign up
Tags
Overview
Comparison
Provenance
Specifications
SBOM
Vulnerabilities
Advisories

Type
Namespace
Name
Version
Subpath
License
golang

github.com/aws/aws-sdk-go-v2/service/internal

accept-encoding

v1.13.4

golang

github.com/azure/go-autorest/autorest

adal

v0.9.23

golang

github.com/spf13

afero

v1.15.0

golang

github.com/alibabacloud-go

alibabacloud-gateway-spi

v0.0.4

golang

github.com/go-openapi

analysis

v0.24.1

golang

google.golang.org/genproto/googleapis

api

v0.0.0-20251222181119-0a764e51fe1b

golang

k8s.io

api

v0.35.0

golang

google.golang.org

api

v0.259.0

golang

github.com/hashicorp/vault

api

v1.22.0

golang

k8s.io

apimachinery

v0.35.0

golang

github.com/natefinch

atomic

v1.0.1

golang

github.com/in-toto

attestation

v1.1.2

golang

github.com/azure/go-autorest/autorest/azure

auth

v0.5.12

golang

cloud.google.com/go

auth

v0.18.0

golang

github.com/azure/go-autorest

autorest

v0.11.29

golang

github.com/sigstore/sigstore/pkg/signature/kms

aws

v1.10.3

golang

github.com/aws

aws-sdk-go-v2

v1.41.0

golang

github.com/azure/azure-sdk-for-go/sdk

azcore

v1.20.0

golang

github.com/azure/azure-sdk-for-go/sdk

azidentity

v1.13.1

golang

github.com/azure/azure-sdk-for-go/sdk/security/keyvault

azkeys

v1.4.0

golang

github.com/sigstore/sigstore/pkg/signature/kms

azure

v1.10.3

golang

github.com/azure

azure-sdk-for-go

v68.0.0+incompatible

golang

github.com/lestrrat-go

blackmagic

v1.0.4

golang

github.com/letsencrypt

boulder

v0.20251110.0

golang

github.com/pkg

browser

v0.0.0-20240102092130-5ac0b6a4141c

generic

busybox

1_37_0

apk

wolfi

busybox

1.37.0-r50

GPL-2.0-only

generic

ca-certificates

20251003

apk

wolfi

ca-certificates-bundle

20251003-r2

MPL-2.0 AND MIT

golang

github.com/spf13

cast

v1.10.0

golang

github.com/google

certificate-transparency-go

v1.3.2

apk

chainguard

chainguard-baselayout

20230214-r15

MIT

golang

github.com/azure/go-autorest/autorest/azure

cli

v0.4.6

golang

github.com/docker

cli

v29.0.3+incompatible

golang

github.com/prometheus

client_golang

v1.23.2

golang

github.com/prometheus

client_model

v0.6.2

golang

k8s.io

client-go

v0.35.0

golang

gitlab.com/gitlab-org/api

client-go

v1.11.0

golang

github.com/go-openapi/swag

cmdutils

v0.25.4

golang

github.com/withfig/autocomplete-tools/integrations

cobra

v1.2.1

golang

github.com/spf13

cobra

v1.10.2

golang

github.com/prometheus

common

v0.67.5

golang

github.com/klauspost

compress

v1.18.2

golang

github.com/sourcegraph

conc

v0.3.1-0.20240121214520-5f936abd7ae8

golang

github.com/modern-go

concurrent

v0.0.0-20180306012644-bacd9c7ef1dd

golang

github.com/aws/aws-sdk-go-v2

config

v1.32.5

golang

github.com/aws/aws-sdk-go-v2/internal

configsources

v1.4.16

golang

github.com/go-openapi/swag

conv

v0.25.4

apk

wolfi

cosign

3.0.4-r1

Apache-2.0

github

sigstore

cosign

v3.0.4

golang

github.com/alibabacloud-go

cr-20160607

v1.0.1

golang

github.com/alibabacloud-go

cr-20181201

v1.0.10

golang

github.com/aws/aws-sdk-go-v2

credentials

v1.19.5

golang

github.com/aliyun

credentials-go

v1.3.2

golang

golang.org/x

crypto

v0.46.0

golang

github.com/alibabacloud-go

darabonba-openapi

v0.2.1

golang

github.com/azure/go-autorest/autorest

date

v0.3.0

golang

github.com/alibabacloud-go

debug

v1.0.0

golang

github.com/docker

distribution

v2.8.3+incompatible

golang

github.com/chrismellard

docker-credential-acr-env

v0.0.0-20230304212654-82a0ddb27589

golang

github.com/mozillazg

docker-credential-acr-helper

v0.4.0

golang

github.com/docker

docker-credential-helpers

v0.9.4

golang

github.com/lestrrat-go

dsig

v1.0.0

golang

github.com/aws/aws-sdk-go-v2/service

ecr

v1.51.2

golang

github.com/awslabs/amazon-ecr-credential-helper

ecr-login

v0.11.0

golang

github.com/aws/aws-sdk-go-v2/service

ecrpublic

v1.38.2

golang

github.com/alibabacloud-go

endpoint-util

v1.1.1

golang

github.com/googleapis

enterprise-certificate-proxy

v0.3.7

github

chainguard-dev

enterprise-packages

d827bff4a89015615a9dd5ac331ea2c5f9be3989

chainguard-baselayout.yaml

golang

github.com/pkg

errors

v0.9.1

golang

github.com/go-openapi

errors

v0.22.5

golang

github.com/hashicorp

errwrap

v1.1.0

golang

github.com/containerd/stargz-snapshotter

estargz

v0.18.1

golang

github.com/valyala

fastjson

v1.6.4

golang

github.com/go-openapi/swag

fileutils

v0.25.4

golang

github.com/x448

float16

v0.8.4

golang

github.com/transparency-dev

formats

v0.0.0-20251017110053-404c0d5b696c

golang

github.com/fsnotify

fsnotify

v1.9.0

golang

github.com/sigstore

fulcio

v1.8.5

golang

github.com/sigstore/sigstore/pkg/signature/kms

gcp

v1.10.3

golang

google.golang.org

genproto

v0.0.0-20251202230838-ff82c1b0f217

apk

wolfi

glibc

2.42-r6

LGPL-2.1-or-later

apk

wolfi

glibc-locale-posix

2.42-r6

LGPL-2.1-or-later

golang

github.com/gobwas

glob

v0.2.3

golang

github.com/yashtewari

glob-intersection

v0.2.0

golang

github.com/tjfoc

gmsm

v1.4.1

golang

github.com/google

gnostic-models

v0.7.0

golang

cuelang.org

go

v0.15.3

golang

github.com/json-iterator

go

v1.1.12

golang

github.com/hashicorp

go-cleanhttp

v0.5.2

golang

github.com/google

go-cmp

v0.7.0

golang

github.com/google

go-containerregistry

v0.20.7

golang

github.com/opencontainers

go-digest

v1.0.0

golang

github.com/common-nighthawk

go-figure

v0.0.0-20210622060536-734e95fb86be

golang

github.com/ryanuber

go-glob

v1.0.0

golang

github.com/mitchellh

go-homedir

v1.1.0

golang

github.com/dustin

go-humanize

v1.0.1

golang

github.com/rogpeppe

go-internal

v1.14.1

golang

github.com/rcrowley

go-metrics

v0.0.0-20250401214520-65e299d6c5c9

golang

github.com/jedisct1

go-minisign

v0.0.0-20230811132847-661be99b8267

golang

github.com/hashicorp

go-multierror

v1.1.1

golang

github.com/shibumi

go-pathspec

v1.3.0

golang

github.com/buildkite

go-pipeline

v0.16.0

golang

github.com/google

go-querystring

v1.2.0

golang

github.com/hashicorp

go-retryablehttp

v0.7.8

golang

github.com/hashicorp

go-rootcerts

v1.0.2

golang

github.com/secure-systems-lab

go-securesystemslib

v0.9.1

golang

github.com/hashicorp

go-sockaddr

v1.0.7

golang

github.com/davecgh

go-spew

v1.1.2-0.20180830191138-d8f796af33cc

golang

github.com/theupdateframework

go-tuf

v0.7.0

golang

github.com/mitchellh

go-wordwrap

v1.0.1

golang

github.com/munnerz

goautoneg

v0.0.0-20191010083416-a7dc8b61c822

golang

github.com/kylelemons

godebug

v1.1.0

golang

github.com/xeipuuv

gojsonpointer

v0.0.0-20190905194746-02993c407bfb

golang

github.com/xeipuuv

gojsonreference

v0.0.0-20180127040603-bd5ef7bd5415

golang

github.com/syndtr

goleveldb

v1.0.1-0.20220721030215-126854af5e6d

golang

github.com/subosito

gotenv

v1.6.0

golang

github.com/asaskevich

govalidator

v0.0.0-20230301143203-a9d515a09cc2

golang

google.golang.org

grpc

v1.78.0

golang

github.com/sigstore/sigstore/pkg/signature/kms

hashivault

v1.10.3

golang

github.com/hashicorp

hcl

v1.0.1-vault-7

golang

github.com/lestrrat-go

httpcc

v1.0.1

golang

github.com/felixge

httpsnoop

v1.0.4

golang

cloud.google.com/go

iam

v1.5.3

golang

github.com/opencontainers

image-spec

v1.1.1

golang

github.com/aws/aws-sdk-go-v2/feature/ec2

imds

v1.18.16

golang

github.com/in-toto

in-toto-golang

v0.9.0

golang

gopkg.in

inf.v0

v0.9.1

golang

github.com/aws/aws-sdk-go-v2/internal

ini

v1.8.4

golang

github.com/go-ini

ini

v1.67.0

golang

gopkg.in

ini.v1

v1.67.0

golang

github.com/azure/azure-sdk-for-go/sdk/security/keyvault

internal

v1.2.0

golang

github.com/azure/azure-sdk-for-go/sdk

internal

v1.11.2

golang

github.com/buildkite

interpolate

v0.1.5

golang

sigs.k8s.io

json

v0.0.0-20250730193827-2d320260d730

golang

github.com/cyberphone

json-canonicalization

v0.0.0-20241213102144-19d51d7fe467

golang

gopkg.in/evanphx

json-patch.v4

v4.13.0

golang

github.com/go-openapi/swag

jsonname

v0.25.4

golang

github.com/go-openapi

jsonpointer

v0.22.4

golang

github.com/go-openapi

jsonreference

v0.21.4

golang

github.com/go-openapi/swag

jsonutils

v0.25.4

golang

cloud.google.com/go

kms

v1.23.2

golang

github.com/aws/aws-sdk-go-v2/service

kms

v1.49.4

golang

k8s.io

kube-openapi

v0.0.0-20250910181357-589584f1c912

apk

wolfi

ld-linux

2.42-r6

LGPL-2.1-or-later

golang

github.com/agnivade

levenshtein

v1.2.1

apk

wolfi

libcrypt1

2.42-r6

LGPL-2.1-or-later

apk

wolfi

libgcc

15.2.0-r6

GPL-3.0-or-later WITH GCC-exception-3.1

apk

wolfi

libxcrypt

4.5.2-r0

GPL-2.0-or-later AND LGPL-2.1-or-later

github

besser82

libxcrypt

v4.5.2

golang

github.com/go-openapi/swag

loading

v0.25.4

golang

github.com/go-openapi

loads

v0.23.2

golang

github.com/sagikazarmark

locafero

v0.11.0

golang

github.com/azure/go-autorest

logger

v0.2.1

golang

github.com/go-logr

logr

v1.4.3

golang

github.com/sirupsen

logrus

v1.9.4-0.20230606125235-dd1b4c2e81af

golang

cloud.google.com/go

longrunning

v0.7.0

golang

github.com/go-openapi/swag

mangling

v0.25.4

golang

github.com/mitchellh

mapstructure

v1.5.1-0.20231216201459-8508981c8b6c

golang

github.com/transparency-dev

merkle

v0.0.2

golang

cloud.google.com/go/compute

metadata

v0.9.0

golang

go.opentelemetry.io/otel

metric

v1.39.0

golang

github.com/azuread

microsoft-authentication-library-for-go

v1.6.0

golang

golang.org/x

mod

v0.31.0

golang

go.mongodb.org

mongo-driver

v1.17.6

golang

go.uber.org

multierr

v1.11.0

golang

golang.org/x

net

v0.48.0

golang

github.com/go-openapi/swag

netutils

v0.25.4

golang

golang.org/x

oauth2

v0.34.0

golang

cloud.google.com/go/auth

oauth2adapt

v0.2.8

golang

cuelabs.dev/go/oci

ociregistry

v0.0.0-20250722084951-074d06050084

golang

github.com/open-policy-agent

opa

v1.12.1

golang

github.com/alibabacloud-go

openapi-util

v0.1.0

golang

github.com/lestrrat-go

option

v1.0.1

github

wolfi-dev

os

86570b9fde2fb272c5aaf8a1faedcd21f46adaf0

busybox.yaml

github

wolfi-dev

os

0e3abaa080a17727da9596fb85d6954e538c83be

ca-certificates.yaml

github

wolfi-dev

os

3d015ddd3d61e92bc88c93b0cbc4752312f7c53b

cosign.yaml

github

wolfi-dev

os

2cbc4de0ff99a03afa5ee19214d812335307dc18

gcc.yaml

github

wolfi-dev

os

ed0646715b44f082be40fb2d5540e2599fccda9d

glibc.yaml

github

wolfi-dev

os

96b92ba0f6ef8a5e492a2f481d614092c3d8141e

libxcrypt.yaml

github

wolfi-dev

os

902bc68793cb63d0ebadd98ac713763f6dc62f6b

wolfi-baselayout.yaml

golang

go.opentelemetry.io

otel

v1.39.0

golang

go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc

otelgrpc

v0.63.0

golang

go.opentelemetry.io/contrib/instrumentation/net/http

otelhttp

v0.63.0

golang

github.com/hashicorp/go-secure-stdlib

parseutil

v0.2.0

golang

github.com/beorn7

perks

v1.0.1

golang

github.com/spf13

pflag

v1.0.10

golang

github.com/digitorus

pkcs7

v0.0.0-20230818184609-3a137a874352

golang

github.com/aws/aws-sdk-go-v2/service/internal

presigned-url

v1.13.16

golang

github.com/prometheus

procfs

v0.17.0

golang

github.com/emicklei

proto

v1.14.2

golang

google.golang.org

protobuf

v1.36.11

golang

github.com/sigstore

protobuf-specs

v0.5.0

golang

github.com/aliyuncontainerservice/ack-ram-tool/pkg/credentials

provider

v0.14.0

golang

sigs.k8s.io

randfill

v1.0.0

golang

github.com/modern-go

reflect2

v1.0.3-0.20250322232337-35a7c28c31ee

golang

github.com/oleiade

reflections

v1.1.0

golang

github.com/sigstore

rekor

v1.4.3

golang

sigs.k8s.io

release-utils

v0.12.2

golang

github.com/sassoftware

relic

v7.2.1+incompatible

golang

github.com/titanous

rocacheck

v0.0.0-20171023193734-afe73141d399

golang

github.com/buildkite

roko

v1.4.0

golang

google.golang.org/genproto/googleapis

rpc

v0.0.0-20251222181119-0a764e51fe1b

golang

github.com/go-openapi

runtime

v0.29.2

golang

github.com/google

s2a-go

v0.1.9

golang

go.opentelemetry.io/auto

sdk

v1.2.1

golang

go.opentelemetry.io/otel

sdk

v1.39.0

golang

github.com/blang

semver

v3.5.1+incompatible

golang

github.com/aws/aws-sdk-go-v2/service

signin

v1.0.4

golang

github.com/sigstore

sigstore

v1.10.3

golang

github.com/sigstore

sigstore-go

v1.1.4

golang

github.com/aws

smithy-go

v1.24.0

golang

github.com/golang

snappy

v0.0.4

golang

github.com/go-openapi

spec

v0.22.2

golang

github.com/aws/aws-sdk-go-v2/service

sso

v1.30.7

golang

github.com/aws/aws-sdk-go-v2/service

ssooidc

v1.35.12

golang

stdlib

1.25.5

golang

github.com/go-logr

stdr

v1.2.2

golang

github.com/go-openapi

strfmt

v0.25.0

golang

github.com/go-openapi/swag

stringutils

v0.25.4

golang

github.com/hashicorp/go-secure-stdlib

strutil

v0.1.2

golang

github.com/aws/aws-sdk-go-v2/service

sts

v1.41.5

golang

github.com/go-openapi

swag

v0.25.4

golang

golang.org/x

sync

v0.19.0

golang

golang.org/x

sys

v0.39.0

golang

github.com/vbatts

tar-split

v0.12.2

golang

github.com/alibabacloud-go

tea

v1.2.1

golang

github.com/alibabacloud-go

tea-utils

v1.4.5

golang

github.com/alibabacloud-go

tea-xml

v1.1.3

golang

github.com/moby

term

v0.5.2

golang

golang.org/x

term

v0.38.0

golang

golang.org/x

text

v0.32.0

golang

github.com/nozzle

throttler

v0.0.0-20180817012639-2ea982251481

golang

golang.org/x

time

v0.14.0

golang

github.com/digitorus

timestamp

v0.0.0-20231217203849-220c5c2851b7

golang

go.opentelemetry.io/otel

trace

v1.39.0

golang

github.com/azure/go-autorest

tracing

v0.6.0

golang

github.com/protocolbuffers

txtpbfmt

v0.0.0-20251016062345-16587c79cd91

golang

github.com/go-openapi/swag

typeutils

v0.25.4

golang

github.com/oklog

ulid

v1.3.1

golang

github.com/dimchansky

utfbom

v1.1.1

golang

k8s.io

utils

v0.0.0-20251002143259-bc988d571ff4

golang

github.com/pborman

uuid

v1.2.1

golang

github.com/google

uuid

v1.6.0

golang

github.com/lestrrat-go/option

v2

v2.0.0

golang

github.com/sigstore/rekor-tiles

v2

v2.0.1

golang

github.com/sigstore/timestamp-authority

v2

v2.0.4

golang

github.com/pelletier/go-toml

v2

v2.2.4

golang

github.com/theupdateframework/go-tuf

v2

v2.3.0

golang

github.com/cespare/xxhash

v2

v2.3.0

golang

github.com/tchap/go-patricia

v2

v2.3.3

golang

github.com/go-viper/mapstructure

v2

v2.4.0

golang

go.yaml.in/yaml

v2

v2.4.3

golang

github.com/vektah/gqlparser

v2

v2.5.31

golang

github.com/spiffe/go-spiffe

v2

v2.6.0

golang

github.com/clbanning/mxj

v2

v2.7.0

golang

github.com/aws/aws-sdk-go-v2/internal/endpoints

v2

v2.7.16

golang

github.com/fxamacker/cbor

v2

v2.9.0

golang

github.com/googleapis/gax-go

v2

v2.16.0

golang

github.com/grpc-ecosystem/grpc-gateway

v2

v2.27.4

golang

k8s.io/klog

v2

v2.130.1

golang

github.com/lestrrat-go/httprc

v3

v3.0.1

golang

go.yaml.in/yaml

v3

v3.0.4

golang

github.com/sigstore/cosign

v3

v3.0.4+dirty

golang

github.com/lestrrat-go/jwx

v3

v3.0.12

golang

github.com/cockroachdb/apd

v3

v3.2.1

golang

github.com/jellydator/ttlcache

v3

v3.4.0

golang

github.com/emicklei/go-restful

v3

v3.13.0

golang

github.com/coreos/go-oidc

v3

v3.17.0

golang

github.com/buildkite/agent

v3

v3.115.2

golang

github.com/go-jose/go-jose

v4

v4.1.3

golang

github.com/cenkalti/backoff

v4

v4.3.0

golang

github.com/golang-jwt/jwt

v4

v4.5.2

golang

github.com/cenkalti/backoff

v5

v5.0.3

golang

github.com/go-chi/chi

v5

v5.2.3

golang

github.com/golang-jwt/jwt

v5

v5.3.0

golang

sigs.k8s.io/structured-merge-diff

v6

v6.3.0

golang

github.com/google/go-github

v73

v73.0.0

golang

github.com/go-openapi

validate

v0.25.1

golang

github.com/spf13

viper

v1.21.0

apk

wolfi

wolfi-baselayout

20230201-r26

MIT

golang

sigs.k8s.io

yaml

v1.6.0

golang

gopkg.in

yaml.v3

v3.0.1

golang

github.com/go-openapi/swag

yamlutils

v0.25.4

golang

go.uber.org

zap

v1.27.1

The trusted source for open source

Talk to an expert
© 2025 Chainguard. All Rights Reserved.
PrivacyTerms

Product

Chainguard ContainersChainguard LibrariesChainguard VMsIntegrationsPricing

Solutions

FedRAMPPCI DSSCMMC 2.0Golden ImagesCVE RemediationPublic Sector

Customers

Customer StoriesChainguard Reviews

Resources

Events & WebinarsSupply Chain Security 101Chainguard CoursesDocumentationTrust CenterChainguard Slack Community

Company

About UsBlogPartnersNewsroomCareersLegal