-
Vulnerable Library - github.com/kyverno/kyverno-v1.12.5
Library home page: https://proxy.golang.org/github.com/kyverno/kyverno/@v/v1.12.5.zip
Path to dependency file: /go.mod
Path to vulnerable lib…
-
### Rules
- [X] I made myself familiar with the Readme, FAQ and Troubleshooting.
- [X] I understand that, if insufficient information or no app logs will be provided, my issue will be closed witho…
-
Cosign seems to be taking a long time to download tuf data and triangulate the image, we'll need to investigate this rather than just bump timeouts like we did in https://github.com/bpfman/bpfman/pull…
-
pip dependencies must be vendored.
In the short term testing the TUF integration with a manually installed TUF works fine but even here there is a practical issue: I don't know how to get the test …
-
We should test role keyids where two ids in the list are the same.
Unfortunately the embedded clients disagree on what to do currently:
https://github.com/theupdateframework/tuf-conformance/pull/1…
-
The following broken links on the website's News and Press pages need to be replaced or deleted.
News page:
- January 25, 2018
[Airbiquity](https://www.airbiquity.com/) receives a [BIG Award f…
-
* docs/TUF-CLIENT-DESIGN.md talks about some constraints the client puts on the metadata structure (or the way targets delegations must work).
* PEP-480 defines a metadata structure that is likely qu…
-
**Description of issue or feature request**:
I would like to request an enhancement for the README of The Update Framework (TUF) repository. The goal is to improve the structure, clarity, and accessi…
-
The way Windows support currently works in development environments causes confusion and subtle issues.
## Problem
Windows ARM inside a VM is the easiest way to test Windows support locally, as …
-
Looking at https://github.com/oxidecomputer/omicron/pull/4415/checks?check_run_id=18411525294 it appears that the job is completed and the artifacts have been output. However, the GitHub UI is showing…