Verify installation

Verify Tetragon image and software bill of materials signatures

Verify Tetragon image signature

Learn how to verify Tetragon container images signatures.

Prerequisites

Verify Signed Container Images

Since version 0.8.4, all Tetragon container images are signed using cosign.

Let’s verify a Tetragon image’s signature using the cosign verify command:

cosign verify \
  --certificate-github-workflow-repository cilium/tetragon \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com \
  --certificate-identity-regexp 'https://github\.com/cilium/tetragon/\.github/workflows/.+' \
  <Image URL> | jq

Note If you are using cosign < v2.0.0, you must set COSIGN_EXPERIMENTAL=1 environment variable to allow verification of images signed in KEYLESS mode. To learn more about keyless signing, please refer to Sigstore documentation.

Verify the SBOM signature

Download and verify the signature of the software bill of materials

A Software Bill of Materials (SBOM) is a complete, formally structured list of components that are required to build a given piece of software. SBOM provides insight into the software supply chain and any potential concerns related to license compliance and security that might exist.

Starting with version 0.8.4, all Tetragon images include an SBOM. The SBOM is generated in SPDX JSON format and published as a cosign attestation alongside the image. If you are new to the concept of SBOM, see what an SBOM can do for you.

Note

Upgrade note: Releases prior to v1.8 published the SBOM as a separate .sbom artifact attached with cosign attach sbom. Starting with v1.8, the SBOM is published as an SPDX JSON attestation via cosign attest --type spdxjson. The legacy commands below no longer apply to images built from v1.8 onward; use the attestation-based commands instead.

# Legacy (pre-v1.8) — no longer applicable
cosign download sbom <Image URL>
cosign verify --attachment sbom <Image URL>

Download SBOM

The SBOM can be extracted from the attestation using cosign download attestation and decoding the base64-encoded payload:

cosign download attestation --predicate-type=https://spdx.dev/Document <Image URL> \
  | jq -r .dsseEnvelope.payload | base64 -d | jq .predicate > sbom.spdx.json

Verify SBOM Attestation

To ensure the SBOM is tamper-proof, its attestation can be verified using the cosign verify-attestation command.

cosign verify-attestation --type spdxjson \
  --certificate-github-workflow-repository cilium/tetragon \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com \
  --certificate-identity-regexp 'https://github\.com/cilium/tetragon/\.github/workflows/.+' \
  <Image URL> | jq

It can be validated that the SBOM attestation was signed using GitHub Actions in the Cilium repository from the Issuer and Subject fields of the output.

Last modified May 6, 2026: .github/workflows: switch image builds to reusable cosign action (21d2a7027)