Update to include image verification #81
Description
With the availability of Docker Hardened Images, I would like to be able to verify an image when pulled as part of a pipeline. There are new scout commands for "docker scout attest get" and "docker scout attest list" that can be used for this purpose.
I think this should include the ability to:
- retrieve all attestations
- retrieve specific attestations
- validate and show equivalent cosign command
Documentation link: https://docs.docker.com/dhi/how-to/verify/