@@ -110,14 +110,20 @@ ability to configure things like volumes or port mappings before the container
110110is started. For example, in a rapid-response scaling situation, you could use
111111` create ` to prepare and stage ten containers in anticipation of heavy loads.
112112
113- * New provenance features*
114-
115- Official images are now signed by Docker, Inc. to improve your confidence and
116- security. Look for the blue ribbons on the [ Docker Hub] ( https://hub.docker.com/ ) .
117- The Docker Engine has been updated to automatically verify that a given Official
118- Repo has a current, valid signature. If no valid signature is detected, Docker
119- Engine will use a prior image.
120-
113+ * Tech preview of new provenance features*
114+
115+ This release offers a sneak peek at new image signing capabilities that are
116+ currently under development. Soon, these capabilities will allow any image
117+ author to sign their images to certify they have not been tampered with. For
118+ this release, Official images are now signed by Docker, Inc. Not only does this
119+ demonstrate the new functionality, we hope it will improve your confidence in
120+ the security of Official images. Look for the blue ribbons denoting signed
121+ images on the [ Docker Hub] ( https://hub.docker.com/ ) .
122+ The Docker Engine has been updated to automatically verify that a given
123+ Official Repo has a current, valid signature. When pulling a signed image,
124+ you'll see a message stating ` the image you are pulling has been verified ` . If
125+ no valid signature is detected, Docker Engine will fall back to pulling a
126+ regular, unsigned image.
121127
122128* Other improvements & changes*
123129
0 commit comments