Trust signal
This add-on ships as a signed OCI artifact. Each per-architecture bundle is signed with ed25519 against the ServiceRadar agent release trust root and verified by the agent before activation.
Signed OCI bundle
Pull the signed bundle from the ServiceRadar registry, then assign it to an agent from the control plane.
oras pull registry.carverauto.dev/serviceradar/serviceradar-addon-workload-identity:v1.3.6
Bundle digest: sha256:22947d35c2631cd69cb341b91d7bc5a73a8cbbdf29e342d1278f84518b63f74e
Signed artifacts
| Platform | Signature |
|---|---|
| linux/amd64 | Signed |
Capabilities
workload-identity
container-inventory
Platforms
linux