ScyllaDB

Chart · Wide-column · low · v0.0.4

digest pinned cosign signed SPDX SBOM SLSA provenance amd64 · arm64 Rebuilt 2026-06-14

High-throughput wide-column store, Cassandra-compatible.

Version

0.0.4 · latest 0.0.3 0.0.2 0.0.1

The latest line lives at the base page; older lines have their own page so you can pin and verify exactly that version.

Deployed image digest

sha256:a4f18fcc9ceb8d9d4f91b235a6d2c1794dda3d9a162c0d36b7d9e0daaa313b2c

Chart OCI version

oci://ghcr.io/quenchworks/charts/scylladb:0.0.4

The chart pins its image by this signed digest, so you never track it yourself. Signatures, SBOM, and provenance attach to the same digest.

Signed

cosign keyless

SBOM

SPDX, on image

Provenance

SLSA build

Architectures

amd64, arm64

Runs as

nonroot (uid 1001)

Root filesystem

read-only

Image size

102.2 MB

SBOM packages

105

Install the chart

Deploy to Kubernetes with hardened defaults. The chart pins its image by signed digest, so you never track it yourself.

Install (latest)

helm install my-scylladb oci://ghcr.io/quenchworks/charts/scylladb --version 0.0.4

Deploys image (digest-pinned)

ghcr.io/quenchworks/images/scylladb@sha256:a4f18fcc9ceb8d9d4f91b235a6d2c1794dda3d9a162c0d36b7d9e0daaa313b2c

Chart version: 0.0.4
App version: 2026.1.5
Chart license: AGPL-3.0-only
App license: AGPL-3.0
Signed: cosign (keyless)
Values schema: yes
Last published: 2026-06-15

Verify the chart

cosign verify ghcr.io/quenchworks/charts/scylladb:0.0.4 \
  --certificate-identity-regexp 'https://github.com/quenchworks/.+' \
  --certificate-oidc-issuer https://token.actions.githubusercontent.com

Transparency

The chart and the image it deploys both publish their attestations on GitHub (charts, images) and log them to the Sigstore transparency log (Rekor), which cosign verify checks for you.

View the image View on ArtifactHub Chart source

Upstream project: https://github.com/scylladb/scylladb