singularity sign

Attach a cryptographic signature to an image


The sign command allows a user to create a cryptographic signature on either a single data object or a list of data objects within the same SIF group. By default without parameters, the command searches for the primary partition and creates a verification block that is then added to the SIF container file.

To generate a keypair, see ‘singularity help key newpair’

singularity sign [sign options...] <image path>


$ singularity sign container.sif


-g, --groupid uint32   group ID to be signed
-h, --help             help for sign
-i, --id uint32        descriptor ID to be signed
-k, --keyidx int       private key to use (index from 'keys list') (default -1)
-u, --url string       key server URL (default "")


Linux container platform optimized for High Performance Computing (HPC) and Enterprise Performance Computing (EPC)

Auto generated by spf13/cobra on 26-Jul-2019