Context: After evaluating the DockerHub Verified Publisher Program and receiving a mail with “it costs as little as $5k per year” I have come to the conclusion that it’s not worth it
You must log in or # to comment.
For large companies that serve many customers 5K per year is a drop in a bucket. If it provides their customers with a more secure experience, it is worth it.