Xynnn007
commented
1 month ago @burgerdev Thanks for the patch!
Closed burgerdev closed 1 month ago
Xynnn007
commented
1 month ago @burgerdev Thanks for the patch!
burgerdev
commented
1 month ago I'll hold onto the formatting fix until the other tests ran through.
This release contains a security fix for confidential pulling of unsigned images: https://github.com/oras-project/rust-oci-client/pull/152.
The upgrade is not trivial, because the crate has been renamed (https://github.com/oras-project/rust-oci-client/issues/142) and there are breaking changes:
Thus, I converted all annotation values from
HashMaptoBTreeMap, worked around thesigstore::registry::Authconversion not being implemented for the new crate, and am now passing the stream wrapped bySizedStream.