{"templateId":"markdown","sharedDataIds":{"sidebar":"sidebar-sidebars.yaml"},"props":{"codeGuideFiles":[],"seo":{"title":"Verify Rakurai Scheduler Binary Attestation","description":"Learn how to work with Staking API for managing deposits, withdrawals, and stake pool information."},"dynamicMarkdocComponents":[],"metadata":{"type":"markdown"},"ast":{"$$mdtype":"Tag","name":"article","attributes":{},"children":[{"$$mdtype":"Tag","name":"Heading","attributes":{"level":1,"id":"verify-rakurai-scheduler-binary-attestation"},"children":["Verify Rakurai Scheduler Binary Attestation"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["The Rakurai scheduler binary comes with ",{"$$mdtype":"Tag","name":"a","attributes":{"href":"https://docs.github.com/en/actions/concepts/security/artifact-attestations"},"children":["GitHub artifact attestation"]},", providing cryptographic proof of its build provenance and integrity."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"table-of-contents"},"children":["Table of Contents"]},{"$$mdtype":"Tag","name":"ul","attributes":{},"children":[{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"a","attributes":{"href":"#github-artifact-attestations"},"children":["GitHub Artifact Attestations"]}]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"a","attributes":{"href":"#supply-chain-levels-for-software-artifacts-slsa-compliance"},"children":["Supply-chain Levels for Software Artifacts (SLSA) Compliance"]}]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"a","attributes":{"href":"#verify-rakurai-scheduler-binary-attestation-with-the-github-cli"},"children":["Verify Rakurai scheduler binary attestation with the GitHub CLI"]}]}]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"github-artifact-attestations"},"children":["GitHub Artifact Attestations"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Artifact attestations enable the creation of unfalsifiable provenance and integrity guarantees for software. In turn, software consumers can verify where and how the software was built. GitHub's artifact attestations create cryptographically signed claims that establish build provenance and include the following information:"]},{"$$mdtype":"Tag","name":"ul","attributes":{},"children":[{"$$mdtype":"Tag","name":"li","attributes":{},"children":["A link to the workflow associated with the artifact"]},{"$$mdtype":"Tag","name":"li","attributes":{},"children":["The repository, organization, environment, commit SHA, and triggering event for the artifact"]}]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["For more information, see ",{"$$mdtype":"Tag","name":"a","attributes":{"href":"https://docs.github.com/en/actions/concepts/security/artifact-attestations"},"children":["Artifact attestations"]},"."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"supply-chain-levels-for-software-artifacts-slsa-compliance"},"children":["Supply-chain Levels for Software Artifacts (SLSA) Compliance"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["GitHub artifact attestations are SLSA compliant. The SLSA framework is an industry standard used to evaluate supply chain security. This gives you confidence that binary hasn’t been tampered with after the build and can be securely traced back to its source."," ","For more information, see ",{"$$mdtype":"Tag","name":"a","attributes":{"href":"https://slsa.dev/"},"children":["SLSA"]},"."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":2,"id":"verify-rakurai-scheduler-binary-attestation-with-the-github-cli"},"children":["Verify Rakurai scheduler binary attestation with the GitHub CLI"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Rakurai generates an attestation for every release. The following steps show how to verify it using the GitHub CLI."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":3,"id":"prerequisites"},"children":["Prerequisites"]},{"$$mdtype":"Tag","name":"ul","attributes":{},"children":[{"$$mdtype":"Tag","name":"li","attributes":{},"children":[{"$$mdtype":"Tag","name":"a","attributes":{"href":"https://github.com/cli/cli#installation"},"children":["GitHub CLI"]}," installed"]}]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":3,"id":"verification"},"children":["Verification"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["To verify the Rakurai scheduler binary, use the following GitHub CLI command."]},{"$$mdtype":"Tag","name":"blockquote","attributes":{},"children":[{"$$mdtype":"Tag","name":"p","attributes":{},"children":[{"$$mdtype":"Tag","name":"strong","attributes":{},"children":["Note"]},": This command assumes you are in an online environment. If you are in an offline or air-gapped environment, see ",{"$$mdtype":"Tag","name":"a","attributes":{"href":"https://docs.github.com/en/actions/how-tos/secure-your-work/use-artifact-attestations/verify-attestations-offline"},"children":["Verifying attestations offline"]},"."]}]},{"$$mdtype":"Tag","name":"CodeBlock","attributes":{"data-language":"bash","header":{"controls":{"copy":{}}},"source":"gh attestation verify PATH/TO/RAKURAI/SCHEDULER/BINARY -R rakurai-io/rakurai-validator\n","lang":"bash"},"children":[]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":3,"id":"results"},"children":["Results"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["Check the command output to determine the result. If verification is successful, you will see a message like ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["✓ Verification succeeded!"]},". If verification fails, you will see an error message such as ",{"$$mdtype":"Tag","name":"code","attributes":{},"children":["✗ Loading attestations from GitHub API failed"]},"."]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":4,"id":"successful-verification"},"children":["Successful verification"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["You’ll see the enforced policy, a checkmark, and one or more matched attestations summarizing the build and signer. Example:"]},{"$$mdtype":"Tag","name":"CodeBlock","attributes":{"data-language":"bash","header":{"controls":{"copy":{}}},"source":"$ gh attestation verify ./PATH/TO/BINARY -R rakurai-io/rakurai-validator\nLoaded digest sha256:<ARTIFACT_DIGEST> for file://...\nLoaded <N> attestations from GitHub API\n\nPolicy criteria enforced:\n- Predicate type: https://slsa.dev/provenance/v1\n- Source repository owner: https://github.com/rakurai-io\n- Source repository: https://github.com/rakurai-io/rakurai-validator\n- Subject Alternative Name: ^https://github.com/rakurai-io/rakurai-validator/\n- OIDC issuer: https://token.actions.githubusercontent.com\n\n✓ Verification succeeded!\n\nMatched attestations:\n- Attestation #<NUMBER>\n- Build repo: rakurai-io/rakurai-validator\n- Build workflow: .github/workflows/<WORKFLOW_FILE>@refs/tags/<TAG>\n- Signer repo: rakurai-io/rakurai-validator\n- Signer workflow: .github/workflows/<WORKFLOW_FILE>@refs/tags/<TAG>\n","lang":"bash"},"children":[]},{"$$mdtype":"Tag","name":"Heading","attributes":{"level":4,"id":"failed-verification"},"children":["Failed verification"]},{"$$mdtype":"Tag","name":"p","attributes":{},"children":["A failure result means no attestation could be found (HTTP 404), and the binary’s authenticity could not be confirmed. Example:"]},{"$$mdtype":"Tag","name":"CodeBlock","attributes":{"data-language":"bash","header":{"controls":{"copy":{}}},"source":"$ gh attestation verify ./PATH/TO/BINARY -R rakurai-io/rakurai-validator\nLoaded digest sha256:<artifact-digest> for file://...\n✗ Loading attestations from GitHub API failed\n\nError: HTTP 404: Not Found\n","lang":"bash"},"children":[]}]},"headings":[{"value":"Verify Rakurai Scheduler Binary Attestation","id":"verify-rakurai-scheduler-binary-attestation","depth":1},{"value":"Table of Contents","id":"table-of-contents","depth":2},{"value":"GitHub Artifact Attestations","id":"github-artifact-attestations","depth":2},{"value":"Supply-chain Levels for Software Artifacts (SLSA) Compliance","id":"supply-chain-levels-for-software-artifacts-slsa-compliance","depth":2},{"value":"Verify Rakurai scheduler binary attestation with the GitHub CLI","id":"verify-rakurai-scheduler-binary-attestation-with-the-github-cli","depth":2},{"value":"Prerequisites","id":"prerequisites","depth":3},{"value":"Verification","id":"verification","depth":3},{"value":"Results","id":"results","depth":3},{"value":"Successful verification","id":"successful-verification","depth":4},{"value":"Failed verification","id":"failed-verification","depth":4}],"frontmatter":{"seo":{"title":"Verify Rakurai Scheduler Binary Attestation"}},"lastModified":"2026-04-13T10:11:16.000Z"},"slug":"/docs/services/rakurai_jito_private/verify-binary-attestation","userData":{"isAuthenticated":false,"teams":["anonymous"]}}