Enclavely Docs
Enclaves

Attestation

What attestation means for release safety.

Attestation proves the runtime matches the expected build measurements for a release.

Why it matters

  • Prevents routing traffic to an unexpected image
  • Supports digest-pinned deployment guarantees
  • Provides a verifiable release integrity check

User-facing behavior

When attestation is required:

  • Passing attestation allows release progression to healthy
  • Failing attestation marks the release as failed
  • Failed releases are not routed

Where to configure

In enclavely.yaml:

service_contract:
  enclave:
    attestation_required: true

Keep attestation_required: true for sensitive environments.

Service Contract

Service contract fields and validation rules.

Managed Runtime

What Enclavely manages and what you need to provide.

On this page

Why it mattersUser-facing behaviorWhere to configure