Elastio Container Images

Below you can find a list of container images used by Elastio services. All elastio container images are signed using cosign. You can check the signatures of Elastio container images, more on this below.

Elastio container images

elastio-cli

public.ecr.aws/elastio/elastio-cli:0.32.48

elastio-bg-job

public.ecr.aws/elastio/elastio-bg-job:0.32.48

s0-ecs

public.ecr.aws/elastio/s0-ecs:0.32.48

Check the Elastio container image signatures

In order to maintain authenticity and integrity of the Elastio container images, they are signed with a cryptographic signature. You can verify the signature using the public key, which is stored in PEM format and can be downloaded from the following URL:

https://elastio-prod-artifacts-signing-public-keys.s3.us-east-1.amazonaws.com/elastio-public-key.pem

To verify the signatures, you will need to install the cosign application. See instructions here.

When cosign is installed, run the following command to verify the signature:

cosign verify --key <key_file|key_url> <image>