-
### What would you like to be added?
OCI Artifact has been removed from OCI Image spec 1.1.0 rc.2 and onwards. Ratify should no longer support this.
We have set the groundwork for this in #923 & #…
-
### What is this about?
### 1. Favicon has been removed
Favicon is not displayed. Should we consider displaying it or is it intentionally removed from the new re-design screens? See left side re…
-
apptainer supports multiple signatures, but verification does not seem to work as expected for these, instead adding a new signature will break verification for the previously existing signature.
#…
-
# Handle
a_delamo
# Vulnerability details
## Impact
In `Sponsorable.sol` is using erecover directly to verify the signature.
Being such a critical piece of the protocol, I would recommend using t…
-
**Describe the feature request**
Include container signatures and verification as part of Istio WASM adoption. The WASM extension will soon be supporting fetching OCI images, this proposal is to add …
-
https://www.postgresql.org/docs/8.3/pgcrypto.html
Must haves:
1. `pgp_pub_encrypt()` / `pgp_pub_decrypt()` and bytea versions, ie `pgp_pub_encrypt_bytea`
1. sha 256 with pkcs-1.5 padding
1. will…
awang updated
3 years ago
-
There are non-standard RSA signature formats where the PKCS #1-padded data is without DigestInfo. A few examples:
- Some old Thawte and Verisign timestamp certificates.
- Signed MD5/SHA1 hashes in…
-
I've checked https://github.com/golang/go/issues/19974.
And, I am aware of comment https://github.com/golang/go/issues/19974#issuecomment-530862973.
SignPSS/VerifyPSS have almost the same problem…
-
Maybe this is non-trivial, but just throwing out the idea: It would be nice if it was possible to pull in the functionality for reading and verifying signatures RPMs without pulling in the code neces…
-
Llamafile is a great convenience by bundling the inference code with the weights. However, it offers less security to users in its current form than the use of untrusted safetensors/gguf weights + sep…