Product Docs
Open Source
Education
Create or update a policy described by file or stdin.
chainctl policies apply [--group=GROUP_NAME | GROUP_ID] [--description=DESCRIPTION] [--filename=FILENAME]... [--recursive] [--yes] [--output table|json|id] [flags]
# Apply a policy document from disk to the "eng" group chainctl policy apply --filename=images-are-signed.yaml --group=eng # Apply an updated policy document to an existing policy, automatically respond yes to confirmation prompts chainctl policy apply -f images-are-signed-v2.yaml --group=eng --yes # Apply a policy document from stdin, interactively choose the group to apply the policy to chainctl policy apply -f -
-d, --description string The description of the policy. -f, --filename strings Filename, directory, or URL to files to use to create or update the resource --group string The parent group name or id of the policy. -h, --help help for apply -R, --recursive Process the directory used in -f, --filename recursively. Useful when you want to manage related manifests organized within the same directory. -y, --yes Automatic yes to prompts; assume "yes" as answer to all prompts and run non-interactively.
--api string The url of the Chainguard platform API. (default "https://console-api.enforce.dev") --audience string The Chainguard token audience to request. (default "https://console-api.enforce.dev") --config string A specific chainctl config file. --console string The url of the Chainguard platform Console. (default "https://console.enforce.dev") --issuer string The url of the Chainguard STS endpoint. (default "https://issuer.enforce.dev") -o, --output string Output format. One of: ["", "table", "tree", "json", "id", "wide"] --timestamp-authority string The url of the Chainguard Timestamp Authority endpoint. (default "https://tsa.enforce.dev") -v, --v int Set the log verbosity level.