-
**Description**
With cosign 2, when verifying a signature in the transparency logs, an OIDC issuer and subject must be matched, but there's very little guidance as to what the options are. The err…
-
Hello. Is there an implementation anywhere?
By the way, these might be of use:
- https://www.researchgate.net/publication/334454601_BlockIPFS_-Blockchain-enabled_Interplanetary_File_System_for_F…
-
I am monitoring the issued certificates with https://developers.facebook.com/docs/certificate-transparency/
Recently I see that certs are reissues almost every day. However there aren't any suspic…
-
The script is described as
> Finds subdomains of a web server by querying Google's Certificate Transparency logs database (https://crt.sh).
At the moment the script reports all hostname-like ide…
-
I was trying to follow the steps at [CT Log Deployment](https://github.com/google/certificate-transparency-go/blob/master/trillian/docs/ManualDeployment.md) in order to run the **log_server** and the …
-
Github integration: blocked by a bug. TODO: report that bug.
Before Github integration:
Copy sentence by sentence existing translations into crowdin. (Time consuming!)
Check export
New translati…
-
The current Installer of WCF allows the usage of an external Database Server, without proofing if the installing user is the owner of this Database Server. This can result in overtaking the webspace (…
-
we need to refactor cosign calling, it's now generating a warning and will error out in future
- https://github.com/sigstore/cosign/pull/2313
```bash
> cosign sign ghcr.io/containerbase/node:14…
-
# Request
Start publishing armored signature files for binaryen artifacts. E.g. for `binaryen-version_118-aarch64-linux.tar.gz` add `binaryen-version_118-aarch64-linux.tar.gz.asc` file so that the or…
-
This project uses an [elegant hack](https://github.com/merklecounty/rget/blob/master/Documentation/design/firefox.md) on top of the existing certificate transparency infrastructure. This hack gets us …