glab-attestation-verify - Man Page
Verify the provenance of a specific artifact or file. (EXPERIMENTAL)
Synopsis
glab attestation verify [flags]
Description
This command is experimental.
For more information about attestations, see:
- Attestations API ⟨https://docs.gitlab.com/api/attestations/⟩
- SLSA provenance specification ⟨https://docs.gitlab.com/ci/pipeline_security/slsa/provenance_v1/⟩
- SLSA Software attestations ⟨https://slsa.dev/attestation-model⟩
This command requires the cosign binary. To install it, see, Cosign installation ⟨https://docs.sigstore.dev/cosign/system_config/installation/⟩.
This command works with GitLab.com only.
Options Inherited from Parent Commands
-h, --help[=false] Show help for this command.
Example
# Verify attestation for the filename.txt file in the gitlab-org/gitlab project. $ glab attestation verify gitlab-org/gitlab filename.txt # Verify attestation for the filename.txt file in the project with ID 123. $ glab attestation verify 123 filename.txt
See Also
Referenced By
Jan 2026 Auto generated by spf13/cobra