Gnupg based Signature Tool for Helm Charts

These details have not been verified by PyPI

Project links

Project description

Helm Sign

helm-cli is a small tool which allows for creating signatures for packed Helm charts. helm already offers an option for singing in verifying charts, however it lacks support for using an existing GnuPG environment (see https://github.com/helm/helm/issues/7599).

PyPI PyPI - Python Version coverage report PyPI - License PyPI - Downloads

Usage

Install

helm-sign is available in the Python Package Index (PyPI). Use the following command for installation:

pip install helm-sign

Sign

helm-sign directly works on an already packed Helm chart (compressed tar file).

Simple usage:

helm-sign your-chart-1.0.0.tgz

For options on how to define the key to be use, run helm-sign -h.

Verify Signature

helm verify needs the public key to be verified against in binary format. Therefore, this is how verification can be done:

cd `mktemp -d`
# download public key (Matthias Lohr) and convert to binary format
curl https://keys.openpgp.org/vks/v1/by-fingerprint/F4A091E1F243C3748FFF661A8FC3060F80C31A0A | gpg --dearmor > mlohr.gpg
# download chart and provenance (signature) file
wget https://helm-charts.mlohr.com/hcloud-cloud-controller-manager/hcloud-cloud-controller-manager-2.0.0.tgz
wget https://helm-charts.mlohr.com/hcloud-cloud-controller-manager/hcloud-cloud-controller-manager-2.0.0.tgz.prov
# verify using helm CLI
helm verify --keyring ./mlohr.gpg hcloud-cloud-controller-manager-2.0.0.tgz

License

This project is published under the Apache License, Version 2.0. See LICENSE.md for more information.

Project details

These details have not been verified by PyPI

Project links

Release history Release notifications | RSS feed

This version

1.1.0

Sep 13, 2023

1.0.0

Jan 21, 2023

0.1.3

Dec 23, 2022

0.1.2

Jan 14, 2022

0.1.1

Jul 14, 2020

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

helm-sign-1.1.0.tar.gz (97.6 kB view details)

Uploaded Sep 13, 2023 Source

Built Distribution

helm_sign-1.1.0-py3-none-any.whl (9.1 kB view details)

Uploaded Sep 13, 2023 Python 3

File details

Details for the file helm-sign-1.1.0.tar.gz.

File metadata

Download URL: helm-sign-1.1.0.tar.gz
Upload date: Sep 13, 2023
Size: 97.6 kB
Tags: Source
Uploaded using Trusted Publishing? No
Uploaded via: twine/4.0.2 CPython/3.11.5

File hashes

Hashes for helm-sign-1.1.0.tar.gz
Algorithm	Hash digest
SHA256	`b8f366609d3255b61dc43885232068b8e35d8dc5aee4f9d308037c65ddaed7db`
MD5	`e1c45161d9d36d8959d5524915a335e5`
BLAKE2b-256	`2b90c299ef0b9128c9fc9bca3fe7d4214035a7a85d289cadded38bf86d87849a`

See more details on using hashes here.

File details

Details for the file helm_sign-1.1.0-py3-none-any.whl.

File metadata

Download URL: helm_sign-1.1.0-py3-none-any.whl
Upload date: Sep 13, 2023
Size: 9.1 kB
Tags: Python 3
Uploaded using Trusted Publishing? No
Uploaded via: twine/4.0.2 CPython/3.11.5

File hashes

Hashes for helm_sign-1.1.0-py3-none-any.whl
Algorithm	Hash digest
SHA256	`628e1cb09a98431acf07835757b18d08af88120a83c2b9219273e8de2470c319`
MD5	`36fe6744198a19e581438199dcf08f2a`
BLAKE2b-256	`4b541f640fc65e682aab6736188f7065c75a6357909dfba480b32873ab71bcbe`