Command Line Tools

in-toto provides various command line tools that you can use to generate, consume, modify and verify in-toto metadata. Detailed usage instructions for each tool, along with examples, are provided below.

Evidence Generation

• in-toto-run: generate signed link metadata
  • Required Named Arguments
  • Positional Arguments
  • Optional Arguments
  • Example Usage
• in-toto-record: generate signed link metadata in multiple steps
  • Positional Arguments
  • Optional Arguments
  • Sub-commands
  • Example Usage

Supply Chain Verification

• in-toto-verify: perform final product supply chain verification
  • Required Named Arguments
  • Optional Arguments
  • Example Usage

Utilities

• in-toto-mock: mock in-toto-run
  • Required Named Arguments
  • Positional Arguments
  • Optional Arguments
  • Example Usage
• in-toto-sign: sign/verify individual pieces of metadata
  • Required Named Arguments
  • Optional Arguments
  • Example Usage
• in-toto-keygen: generate cryptographic keys
  • Positional Arguments
  • Optional Arguments
  • Example Usage