Patent attributes
A request to sign a provided payload is received, wherein the payload includes an automation script specified to execute on one or more management service instances. The automation script is validated, including by modifying the payload to add metadata data associated with the validation. An encrypted version of a digital signature private key that was received is sent to a credential system. An unencrypted version is received and used to sign the modified payload. The signed modified payload is provided in response to the request to sign the provided payload. The signed modified payload is configured to, in response to a request to execute the automation script on the one or more of the management service instances, be verified using a public key corresponding to the digital signature private key and allow a validation of the automation script at least in part by using the included added metadata.
