init
, add
, push
or reset
.
As you can see, it mimics the workflow of a commonly used version control tool, and this is not by coincidence. Chainloop wants to make sure that the tooling feels familiar to developers and that no security jargon leaks into this stage of the process. For a developer, creating an attestation must be as simple as initializing it, adding pieces of evidence (materials) to it, and pushing it.
add
command knows how to handle each kind of material transparently to the user.
For example
reset
command we can indicate to the control plane that something went wrong or we want to abort the attestation process.
--kind
flag.
For example
attestation push
command.