Skip to content

Commit 023e9ce

Browse files
k8s-ci-robotk8s-ci-robot
authored
Merge pull request #36390 from windsonsea/vsiyhf
[zh] Sync1.25 verify-signed-images.md
2 parents 448e06d + 212b7c8 commit 023e9ce

File tree

1 file changed

+10
-10
lines changed

1 file changed

+10
-10
lines changed

content/zh-cn/docs/tasks/administer-cluster/verify-signed-images.md

Lines changed: 10 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -25,13 +25,13 @@ You will need to have the following tools installed:
2525
- `cosign` ([install guide](https://docs.sigstore.dev/cosign/installation/))
2626
- `curl` (often provided by your operating system)
2727
-->
28-
这些说明适用于 Kubernetes {{< skew currentVersion >}}。如果你想要检查其他版本的 Kubernetes 组件的完整性,
29-
请查看对应 Kubernetes 版本的文档。
28+
这些说明适用于 Kubernetes {{< skew currentVersion >}}。
29+
如果你想要检查其他版本的 Kubernetes 组件的完整性,请查看对应 Kubernetes 版本的文档。
3030

31-
你需要安装以下工具:
31+
你需要安装以下工具
3232

33-
- `cosign` ([安装指南](https://docs.sigstore.dev/cosign/installation/))
34-
- `curl` (通常由你的操作系统提供)
33+
- `cosign`[安装指南](https://docs.sigstore.dev/cosign/installation/)
34+
- `curl`通常由你的操作系统提供
3535

3636
<!--
3737
## Verifying image signatures
@@ -44,19 +44,19 @@ the `cosign verify` command:
4444
-->
4545
## 验证镜像签名 {#verifying-image-signatures}
4646

47-
完整的镜像签名列表请参见[发行版本](/releases/download/)
47+
完整的镜像签名列表请参见[发行版本](/zh-cn/releases/download/)
4848

49-
我们从这个列表中选择一个镜像,并使用 `cosign verify` 命令来验证它的签名:
49+
从这个列表中选择一个镜像,并使用 `cosign verify` 命令来验证它的签名:
5050

5151
```shell
52-
COSIGN_EXPERIMENTAL=1 cosign verify k8s.gcr.io/kube-apiserver-amd64:v1.24.0
52+
COSIGN_EXPERIMENTAL=1 cosign verify registry.k8s.io/kube-apiserver-amd64:v1.24.0
5353
```
5454

5555
{{< note >}}
5656
<!--
5757
`COSIGN_EXPERIMENTAL=1` is used to allow verification of images signed
5858
in `KEYLESS` mode. To learn more about keyless signing, please refer to
59-
[Keyless Signatures](https://github.com/sigstore/cosign/blob/main/KEYLESS.md#keyless-signatures)
59+
[Keyless Signatures](https://github.com/sigstore/cosign/blob/main/KEYLESS.md#keyless-signatures).
6060
-->
6161
`COSIGN_EXPERIMENTAL=1` 用于对以 `KEYLESS` 模式签名的镜像进行验证。想要进一步了解 `KEYLESS`,请参考
6262
[Keyless Signatures](https://github.com/sigstore/cosign/blob/main/KEYLESS.md#keyless-signatures)
@@ -72,7 +72,7 @@ To verify all signed control plane images, please run this command:
7272
验证所有已签名的控制平面组件镜像,请运行以下命令:
7373

7474
```shell
75-
curl -Ls https://sbom.k8s.io/$(curl -Ls https://dl.k8s.io/release/latest.txt)/release | grep 'PackageName: k8s.gcr.io/' | awk '{print $2}' > images.txt
75+
curl -Ls https://sbom.k8s.io/$(curl -Ls https://dl.k8s.io/release/latest.txt)/release | grep 'PackageName: registry.k8s.io/' | awk '{print $2}' > images.txt
7676
input=images.txt
7777
while IFS= read -r image
7878
do

0 commit comments

Comments
 (0)