-
-
https://blog.pypi.org/posts/2024-11-14-pypi-now-supports-digital-attestations/
Does the publish action version need to be bumped? Or should this "just work"?
-
### Describe the bug
Ever since moving from geth to reth a few months ago, my validator is occasionally missing attestations, averaging around one a day. I saw this behavior with alpha.8, alpha.10, a…
-
Please confirm that:
* [x] You have read and understood the [requirements for registration](https://tools.ietf.org/html/rfc8615#section-3.1).
* [x] You have checked [the registry](https://www.iana…
-
### What happened?
Crossplane uses a large amount of memory (and OOMKilled with default values) if multiple attestation verifications are conducted simultaneously. This may also be related to the s…
-
Currently we do releases from maintainers machines as this allowed us to upload PGP signatures for the releases. However, PyPI support for PGP signatures has never been great, it has been deprecated, …
-
**Description**
Cosign is generating tlog entries with an entry type that isn't supported by Rekor.
Create blob attestation like so:
```
cosign attest-blob file-to-attest \
--new-bundle-fo…
-
I propose to check if [GitHub Artifact Attestations](https://github.blog/news-insights/product-news/introducing-artifact-attestations-now-in-public-beta) (which uses Sigstore cosign under the cover) w…
-
We need to deploy a Token Lists (https://tokenlists.org/) style front-end to track EAS schemas related to DAOs. The UI can be effectively the same.
@Rashmi-278, we need to figure out how listing w…
-
056Security
Medium
# mocked,archived profiles could archive attestations
### Summary
In archiveAttestation() msg.sender is only being checked if it is a part of profileId, which could result of mo…