Containers are the next major virtualization stack, providing an easy means to build a deployment package that encompasses your code, binaries and dependencies. How do you know the container image your deploying was built by a vendor, or even a team you trust? Notary v2 aims to solve this problem by enabling signing of all artifacts placed in an OCI conformant registry. As the artifact is promoted within and across registries, Notary v2 signatures can move with the artifacts, enabling secure validations, ensuring the content you deploy is the content you trust.