sigstoreSignatureCheck property
Require that an image was signed by Cosign with a trusted key.
This check requires that both the image and signature are stored in Artifact Registry.
Optional.
Implementation
SigstoreSignatureCheck? sigstoreSignatureCheck;