-
Hi @mayaCostantini , the guide which you wrote is very helpful for local sigstore setup.
I have configured the keycloak and fulcio as mentioned, but Im getting the below error.
main.go:74: error…
-
We have a private repository but distribute our binaries publicly.
We would like for people to be able to validate the attestations of these binaries via the public good sigstore instances. There d…
-
- [ ] [Postgres Plugin for Steampipe ](https://github.com/jreyesr/steampipe-plugin-postgres)
# Postgres Plugin for Steampipe
**DESCRIPTION:**
Apache-2.0 license
Postgres Plugin for Steampipe
Use …
-
Fulcio is in a good position to record the public keys of the OIDC identity providers in a (separate?) transparency log. This would be nice to have for historical reasons.
-
Currently, the crawler proceed with all HTTPS websites, not matter how secure the HTTPS connection is, e.g. certificates might be invalid.
We (Kiwix) would like to be able to ensure (when requested…
-
### Describe the request
Print the output from the `arduino-fwuploader` invocations to the IDE's "**Output**" panel.
🙂 It will be easier for the user to troubleshoot problems that might occur du…
-
The ASN.1 definition of `NameConstraints` is found in the implicitly tagged section of RFC 5820 [here](https://tools.ietf.org/html/rfc5280#page-129):
```
NameConstraints ::= SEQUENCE {
permi…
est31 updated
3 years ago
-
In https://github.com/MellonScholarlyCommunication/spec-notifications/issues/20 and our bi-weekly technical Mellon meeting we had a discussion what the relation and differences of an Event Log is with…
-
## Bug Report
**Describe the bug**
See https://github.com/fluent/fluent-bit/actions/runs/8380464955/job/22949896795, looks like cosign updates are required to resolve. Signing with the key worke…
-
Checkout https://www.csoonline.com/article/3662782/sigstore-explained-how-it-helps-secure-the-software-supply-chain.html to know what Sigstore is and why it's important to use it.
For Maven, Sonaty…