Add current scope of sign/verify

PushkarJ · PushkarJ · commit a93833c24571 · 2022-04-11T09:41:24.000-07:00
diff --git a/content/en/releases/download.md b/content/en/releases/download.md
@@ -77,10 +77,15 @@ You can fetch that list using:
 ```shell
 curl -Ls https://sbom.k8s.io/$(curl -Ls https://dl.k8s.io/release/latest.txt)/release | grep 'PackageName: k8s.gcr.io/' | awk '{print $2}'
 ```
+For Kubernetes v{{< skew currentVersion >}}, the only kind of code artifact that
+you can verify integrity for is a container image, using the experimental
+signing support.
 
 To manually verify signed container images of Kubernetes core components, please refer to
 [Verify Signed Container Images](/docs/tasks/administer-cluster/verify-signed-images).
 
+
+
 ## Binaries
 
 Find links to download Kubernetes components (and their checksums) in the [CHANGELOG](https://github.com/kubernetes/kubernetes/tree/master/CHANGELOG) files.
