Notary Project

Notary Project Signing Specification

The Notary Project specification defines the signature envelope format, trust store and trust policy for container image signing and verification. It supports multiple signature formats and integrates with OCI distribution registries for storing signatures alongside container images. The specification enables end-to-end supply chain security from build to deployment.

Documentation GitHub

API entry from apis.yml

aid: notary:notary-spec
name: Notary Project Signing Specification
description: The Notary Project specification defines the signature envelope format, trust store and trust
  policy for container image signing and verification. It supports multiple signature formats and integrates
  with OCI distribution registries for storing signatures alongside container images. The specification
  enables end-to-end supply chain security from build to deployment.
humanURL: https://notaryproject.dev/docs/
image: https://kinlane-productions2.s3.amazonaws.com/apis-json/apis-json-logo.jpg
properties:
- type: Documentation
  url: https://notaryproject.dev/docs/
- type: Reference
  url: https://github.com/notaryproject/specifications/blob/main/specs/trust-store-trust-policy.md
- type: GitHubRepository
  url: https://github.com/notaryproject/specifications
- type: JSONSchema
  url: json-schema/notary-trust-policy-schema.json
- type: JSONSchema
  url: json-schema/notary-signature-envelope-schema.json
tags:
- Signing
- Specification
- Verification

Notary Project Signing Specification

Documentation

SDKs

Schemas & Data

Other Resources

API entry from apis.yml