-
Current situation:
* root signing period is 31 days: so the signing event PR opens 31 days before expiry
* tests file an issue if root is not valid 30 days into the future
This is not completely …
-
The recently released [python-tuf v2.1.0](https://github.com/theupdateframework/python-tuf/blob/v2.1.0/docs/CHANGELOG.md) introduces an *experimental* [repository][2] package.
(UPDATE: still experi…
-
The specification should provide recommendations about upload access to TUF repositories. An uploader should only be trusted to upload images that have been delegated to them, and in most cases they s…
-
I have Asus Tuf F15 and it got 2 fans when i use it it only turns one fan not both fans
-
I was sure this issue already existed but now I cannot find it...
tough client does not seem to support METAFILEs without hashes or length within timestamp and snapshot metadata.
The specificati…
-
**Description of issue or feature request**:
We need to enhance the documentation for The Update Framework (TUF) by adding architecture diagrams and other visual aids, aligning with the [CNCF TechD…
-
I've installed the scaffold helm chart version 0.6.34 on the private EKS cluster and enabled high availability (e.g., 2 replicas) for all Sigstore components.
TUF Version: v0.6.9
However, when att…
-
I would like the signer application to store signing key details (the privkeyuri strings) in an application cache. The purpose is to prevent signing with the wrong Yubikey or the wrong sigstore identi…
-
This paragraph from the [metadata format section](https://github.com/theupdateframework/specification/blob/258ad50dd7fdb77e77e651b186a3468d4039ccdb/tuf-spec.md#L543-L544) ...
> The keyid MU…
-
No info.. Help!