An ID for the key used to sign. This could be either an ID for the key
stored in public_key (such as the ID or fingerprint for a PGP key, or the
CN for a cert), or a reference to an external key (such as a reference to a
key in Cloud Key Management Service).
An ID for the key used to sign. This could be either an ID for the key
stored in public_key (such as the ID or fingerprint for a PGP key, or the
CN for a cert), or a reference to an external key (such as a reference to a
key in Cloud Key Management Service).
Public key of the builder which can be used to verify that the related
findings are valid and unchanged. If key_type is empty, this defaults
to PEM encoded public keys.
This field may be empty if key_id references an external key.
For Cloud Build based signatures, this is a PEM encoded public
key. To verify the Cloud Build signature, place the contents of
this field into a file (public.pem). The signature field is base64-decoded
into its binary representation in signature.bin, and the provenance bytes
from BuildDetails are base64-decoded into a binary representation in
signed.bin. OpenSSL can then verify the signature:
openssl sha256 -verify public.pem -signature signature.bin signed.bin
Public key of the builder which can be used to verify that the related
findings are valid and unchanged. If key_type is empty, this defaults
to PEM encoded public keys.
This field may be empty if key_id references an external key.
For Cloud Build based signatures, this is a PEM encoded public
key. To verify the Cloud Build signature, place the contents of
this field into a file (public.pem). The signature field is base64-decoded
into its binary representation in signature.bin, and the provenance bytes
from BuildDetails are base64-decoded into a binary representation in
signed.bin. OpenSSL can then verify the signature:
openssl sha256 -verify public.pem -signature signature.bin signed.bin
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Missing the information I need","missingTheInformationINeed","thumb-down"],["Too complicated / too many steps","tooComplicatedTooManySteps","thumb-down"],["Out of date","outOfDate","thumb-down"],["Samples / code issue","samplesCodeIssue","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-03 UTC."],[],[]]
