Get container image signatures

Get existing container image signatures from Pyxis. The signatures matching specified criteria will be fetched.

The desired signatures can be filtered based on two criteria: manifest digest and image reference. Multiple values of each criterion can be specified as CSV. Both criteria may be used simultaneously, and an “OR” operator will be used between them (signatures matching either criterion will be returned).

CLI reference

usage: pubtools-pyxis-get-signatures [-h] --pyxis-server PYXIS_SERVER
                                     [--pyxis-insecure]
                                     [--pyxis-krb-principal PYXIS_KRB_PRINCIPAL]
                                     [--pyxis-krb-ktfile PYXIS_KRB_KTFILE]
                                     [--pyxis-ssl-crtfile PYXIS_SSL_CRTFILE]
                                     [--pyxis-ssl-keyfile PYXIS_SSL_KEYFILE]
                                     [--manifest-digest MANIFEST_DIGEST]
                                     [--reference REFERENCE]

Named Arguments

--pyxis-server

Pyxis service hostname

--pyxis-insecure

Allow insecure connection to Pyxis

--pyxis-krb-principal

Pyxis kerberos principal in form: name@REALM

--pyxis-krb-ktfile

Pyxis Kerberos client keytab. Optional. Used for login if TGT is not available.

--pyxis-ssl-crtfile

Path to .crt file for the SSL authentication

--pyxis-ssl-keyfile

Path to .key file for the SSL authentication

--manifest-digest

comma separated manifest-digests to search or json file when prefixed with @

--reference

comma separated container pull reference to search or json file when prefixed with @

Examples

NOTE: The demonstration of various authentication types can be seen in “Get operator indices” entrypoint examples.

Get signatures matching the specified manifest digests:

pubtools-pyxis-get-signatures \
--pyxis-server https://pyxis-server-url/ \
--pyxis-ssl-crtfile /path/to/file.crt \
--pyxis-ssl-keyfile /path/to/file.key \
--manifest-digest sha256:a1a1a1a1,sha256:b2b2b2b2

Get signatures matching the specified image references:

pubtools-pyxis-get-signatures \
--pyxis-server https://pyxis-server-url/ \
--pyxis-ssl-crtfile /path/to/file.crt \
--pyxis-ssl-keyfile /path/to/file.key \
--reference registry.com/namespace/image:1,registry.com/namespace/other-image:2

Get signatures matching the specified manifest digests OR image references:

pubtools-pyxis-get-signatures \
--pyxis-server https://pyxis-server-url/ \
--pyxis-ssl-crtfile /path/to/file.crt \
--pyxis-ssl-keyfile /path/to/file.key \
--manifest-digest sha256:a1a1a1a1,sha256:b2b2b2b2
--reference registry.com/namespace/image:1,registry.com/namespace/other-image:2,