NAME¶

glab-attestation-verify - Verify the provenance of a specific artifact or file. (EXPERIMENTAL)

SYNOPSIS¶

glab attestation verify [flags]

DESCRIPTION¶

This command is experimental.

For more information about attestations, see:

Attestations API ⟨https://docs.gitlab.com/api/attestations/⟩
SLSA provenance specification ⟨https://docs.gitlab.com/ci/pipeline_security/slsa/provenance_v1/⟩
SLSA Software attestations ⟨https://slsa.dev/attestation-model⟩

This command requires the cosign binary. To install it, see, Cosign installation ⟨https://docs.sigstore.dev/cosign/system_config/installation/⟩.

This command works with GitLab.com only.

OPTIONS INHERITED FROM PARENT COMMANDS¶

-h, --help[=false] Show help for this command.

EXAMPLE¶

# Verify attestation for the filename.txt file in the gitlab-org/gitlab project.
$ glab attestation verify gitlab-org/gitlab filename.txt
# Verify attestation for the filename.txt file in the project with ID 123.
$ glab attestation verify 123 filename.txt

Source file:	glab-attestation-verify.1.en.gz (from glab 1.82.0-1.1)
Source last updated:	2026-01-30T06:20:10Z
Converted to HTML:	2026-02-16T01:51:12Z

NAME¶

SYNOPSIS¶

DESCRIPTION¶

OPTIONS INHERITED FROM PARENT COMMANDS¶

EXAMPLE¶

SEE ALSO¶