-
Hi! :wave:
I'm currently looking into upgrading this package on Arch Linux.
Due to the debacle with the removal of signed sdists on PyPI, we have decided to switch to upstream provided, auto-gene…
dvzrv updated
3 months ago
-
It shows failed to verify signed artifacts. even deleted .android/debug.keystore and entered new one`s but still problem remains. Dependencies are found even updated them manually. whether i choose b…
-
After all of the issues with signature verification on replacing/deleting records, one suggestion that came up was an optional process for verifying signatures on publish. This would be a way for a pu…
-
Hi,
I am having an issue when I use my generated token on other services (like pasting on the jwt.io website), it gives me an "Invalid signature". I have the following minimal example:-
```rust
…
-
According to https://github.com/theupdateframework/specification/blob/master/tuf-spec.md the TUF reference implementation only supports rsassa-pss-sha256, ed25519 and ecdsa-sha2-nistp256 - is this tru…
-
Providing HTTPS for all of `download.opensuse.org` would understandably add a lot of CPU load to the servers, but this load is unnecessary as the clients will be verifying the signatures on the packag…
-
After disassembling the bootloader for Mt6765 called lk.bin, I found the fastboot command "oem ultraflash", and after testing on my mt-6765 phone, it appears to allow for USB bulk transfers of large p…
-
- OpenPGP.js version: 5.6.0
- Both Browser or Node.js
In this setup PK RSA1024 [certifyKeys, signData], SK RSA4096 [encryptCommunication], we would expect the key to be unusable for both signing a…
-
### Problem Statement
It seems Kyverno does not cache image signature and attestation that are used to verify an image. For a particular image digest, under normal circumstances, the signature and at…
-
Have support for validating transaction signatures (computing the transaction signature from the transaction data.