Signed node-red docker images?

I’m using the nodered/node-red image and I’m wondering if it's being signed anywhere I can check.

planning on enabling DOCKER_CONTENT_TRUST

No it isn't. It is something on the to-do list, but I'm not sure where it has got to.

righto, thanks for the info

I looked at this for the v2.0.0 release and Docker's own tools for GitHub Actions don't support doing it for multi-platform manifest builds generated by docker buildx

If you can find doc for how to do this without having to jump thought many many hoops I'll happily have another look.