cert-manager-controller
Wolfi-Based Cert Management
from
quay.io/jetstack/cert-manager-controller
Pull Reference
ghcr.io/verity-org/jetstack/cert-manager-controller
docker pull ghcr.io/verity-org/jetstack/cert-manager-controller
Available Versions
1.20
latest
ghcr.io/verity-org/cert-manager-controller:1.20 default
Wolfi-Based Image
Built from scratch using Wolfi packages. Contains only the minimum packages needed to run — no shell, no package manager, minimal attack surface by design.
Supply Chain
Full compliance details
Signed
SLSA L3
SBOM
Rekor
Verify this artifact
Cosign signature
cosign verify \ --certificate-identity-regexp "https://github.com/verity-org/verity/.github/workflows/" \ --certificate-oidc-issuer "https://token.actions.githubusercontent.com" \ ghcr.io/verity-org/jetstack/cert-manager-controller:v1.20.2
Build provenance
gh attestation verify \ oci://ghcr.io/verity-org/jetstack/cert-manager-controller:v1.20.2 \ --owner verity-org
Fix available — pending patch
These vulnerabilities have upstream fixes but could not be automatically patched.
| ID | Package | Installed | Fixed | Severity |
|---|---|---|---|---|
| CVE-2026-32952 | github.com/Azure/go-ntlmssp | v0.0.0-20221128193559-754e69321358 | 0.1.1 | MEDIUM |
Source
Wolfi (from-source rebuild)
Platforms
linux/amd64, linux/arm64
Registry
ghcr.io/verity-org
Upstream
quay.io/jetstack/cert-manager-controller