search

gittuf / gittuf

A security layer for Git repositories
https://gittuf.dev
Apache License 2.0
439 stars 29 forks source link

Drop explicit RSA, ECDSA, etc types in favour of ssh.SSHKeyType only #447

Open lukpueh opened 1 week ago

lukpueh commented 1 week ago 
          This should eventually drop the explicit RSA, ECDSA, etc types. We want just SSH here.

_Originally posted by @adityasaky in https://github.com/gittuf/gittuf/pull/436#discussion_r1638653883_

adityasaky commented 1 week ago

To add, this has two dimensions. We want to drop support for these keys in "standard formats" (now handled by the ssh-keygen signer/verifier) as well as in the custom securesystemslib format (dropping entirely). The latter will cause a lot of diffs possibly, especially in tests. 😬