Sold by: Waltsoft Inc.
Deployed on AWS
Free Trial
AWS Free Tier
Secure container image signing and verification using Sigstore's Cosign v2. Essential for DevSecOps teams implementing supply chain security with keyless signing and OIDC integration.
Overview
Overview
Cosign v2 is a powerful container image signing and verification tool from the Sigstore project that enables secure software supply chain practices. This solution provides keyless signing capabilities using OpenID Connect (OIDC) identity providers, eliminating the need for long-lived cryptographic keys while ensuring image authenticity and integrity.
Features
- Keyless signing with OIDC identity providers (GitHub, Google, Microsoft)
- Traditional key-based signing with hardware security modules (HSM) support
- Integration with transparency logs for public verification
- Policy enforcement and attestation generation
- Kubernetes admission controller compatibility
- Multi-architecture container support
Getting Started
Deploy the containerized Cosign v2 service on port 8080 to begin signing and verifying container images. The service integrates seamlessly with CI/CD pipelines and supports both interactive and automated workflows for enterprise container security.
Disclaimer: This software is open-source and distributed under its own licensing terms. It is not affiliated with, endorsed by, or sponsored by the upstream project maintainers. Provided "as is" without warranty. Users utilize this software at their own risk and are responsible for compliance with applicable regulations.
Highlights
- Keyless OIDC-based container image signing
- Hardware security module (HSM) integration
- Kubernetes policy enforcement support
Details
Sold by
Categories
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Latest version
Operating system
Ubuntu 24.04
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Free trial
Try this product free for 5 days according to the free trial terms set by the vendor. Usage-based pricing is in effect for usage beyond the free trial terms. Your free trial gets automatically converted to a paid subscription when the trial ends, but may be canceled any time before that.
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time. Alternatively, you can pay upfront for a contract, which typically covers your anticipated usage for the contract duration. Any usage beyond contract will incur additional usage-based costs.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
If you are an AWS Free Tier customer with a free plan, you are eligible to subscribe to this offer. You can use free credits to cover the cost of eligible AWS infrastructure. See AWS Free Tier for more details. If you created an AWS account before July 15th, 2025, and qualify for the Legacy AWS Free Tier, Amazon EC2 charges for Micro instances are free for up to 750 hours per month. See Legacy AWS Free Tier for more details.
Dimension | Description | Cost/hour |
|---|---|---|
t3.medium Recommended | t3.medium instance | $0.01 |
t3.micro | t3.micro instance | $0.00 |
t3.large | t3.large instance | $0.01 |
m5.large | m5.large instance | $0.01 |
r5.large | r5.large instance | $0.01 |
m5.xlarge | m5.xlarge instance | $0.01 |
Vendor refund policy
No refunds. Cancel anytime. Contact support@waltsoft.net .
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Replaced with Cosign v2 - Container Image Signing & Verification Tool. Fresh build by Waltsoft.
Additional details
Usage instructions
Step 1: Launch from AWS Marketplace using t3.medium or larger. Step 2: SSH with ssh ubuntu@<public-ip>. Step 3: Wait 2-3 min for Docker to start. Step 4: Access at http://<public-ip>:8080. Step 5: See /opt/waltsoft/README.md for details.
Support
Vendor support
For technical support, email support@waltsoft.net or visit
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Up-to-date, customizable, and secure. Cosign supports container signing, verification, and storage in an OCI registry. Written in Go, it aims to make signatures invisible infrastructure.
SignServer digitally signs your documents and code while keeping signature keys secure and workflows easy, secure and auditable. Start securely signing documents and code today.
Cryptographic interlock for autonomous AI agents. Six-layer formally verified kernel issues a signed ALLOW, CONSTRAIN, or DENY verdict before any action executes. Hash-chained evidence. Fail-closed.
Customer reviews
No customer reviews yet
Be the first to review this product . We've partnered with PeerSpot to gather customer feedback. You can share your experience by writing or recording a review, or scheduling a call with a PeerSpot analyst.