Other orgs will be looking for insight into how we implemented Notary in the pipeline and why we did so. Will need to create an ADR for reference. command line instructions to show how Docker Content Trust works, key storage policy captured, input from Jeff about his process concerns, ci pipeline design need to investigate whether the encyption algorithms are FIPs compliant