issues
search
in-toto
/
witness
Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.
https://witness.dev
Apache License 2.0
415
stars
59
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
small typo fix
#424
ChaosInTheCRD
closed
8 months ago
1
chore: bump express from 4.18.3 to 4.19.2 in /docs-website
#423
dependabot[bot]
closed
8 months ago
1
[Feat]: Define attestor types that leverage the intelligence gathered by other attestors
#422
ChaosInTheCRD
opened
8 months ago
0
chore: bump actions/cache from 4.0.1 to 4.0.2
#421
dependabot[bot]
closed
8 months ago
1
chore: bump actions/dependency-review-action from 4.1.3 to 4.2.4
#420
dependabot[bot]
closed
8 months ago
1
chore: bump github/codeql-action from 3.24.8 to 3.24.9
#419
dependabot[bot]
closed
8 months ago
1
curl + exec install is bad practice
#418
fmoessbauer
opened
8 months ago
7
chore: bump webpack-dev-middleware from 5.3.3 to 5.3.4 in /docs-website
#417
dependabot[bot]
closed
8 months ago
1
[Bug]: Using artifactsFrom fails when backrefs don't exist
#416
jkjell
opened
8 months ago
0
chore: bump github/codeql-action from 3.24.6 to 3.24.8
#415
dependabot[bot]
closed
8 months ago
1
chore: bump github/codeql-action from 3.24.6 to 3.24.7
#414
dependabot[bot]
closed
8 months ago
2
chore: bump docker/login-action from 3.0.0 to 3.1.0
#413
dependabot[bot]
closed
8 months ago
1
chore: bump actions/checkout from 4.1.1 to 4.1.2
#412
dependabot[bot]
closed
8 months ago
1
chore: bump k8s.io/apimachinery from 0.29.2 to 0.29.3
#411
dependabot[bot]
closed
8 months ago
1
chore: bump follow-redirects from 1.15.5 to 1.15.6 in /docs-website
#410
dependabot[bot]
closed
8 months ago
1
chore: bump google.golang.org/protobuf from 1.32.0 to 1.33.0
#409
dependabot[bot]
closed
8 months ago
1
chore: bump the go_modules group group with 2 updates
#408
dependabot[bot]
closed
8 months ago
1
chore: bump gopkg.in/go-jose/go-jose.v2 from 2.6.2 to 2.6.3
#407
dependabot[bot]
closed
8 months ago
2
Update GHA triggers to fine tune for code changes vs other updates
#406
jkjell
closed
8 months ago
1
Update dependabot.yml
#405
jkjell
closed
8 months ago
1
[Feat]: Custom / External Attestors
#404
ChaosInTheCRD
opened
8 months ago
1
doc: fix example in signers kms doc
#403
kairoaraujo
closed
8 months ago
2
chore: bump github.com/in-toto/go-witness from 0.3.0 to 0.3.1
#402
dependabot[bot]
closed
9 months ago
2
chore: bump actions/cache from 4.0.0 to 4.0.1
#401
dependabot[bot]
closed
9 months ago
1
chore: bump github/codeql-action from 3.24.5 to 3.24.6
#400
dependabot[bot]
closed
9 months ago
1
chore: bump actions/download-artifact from 4.1.2 to 4.1.4
#399
dependabot[bot]
closed
9 months ago
1
Bump to go-witness v0.3.1
#398
jkjell
closed
9 months ago
1
fix: run e2e test script as part of workflows
#397
mikhailswift
closed
8 months ago
1
chore: bump github/codeql-action from 3.24.3 to 3.24.5
#396
dependabot[bot]
closed
9 months ago
1
chore: bump actions/dependency-review-action from 4.1.1 to 4.1.3
#395
dependabot[bot]
closed
9 months ago
1
Witness website netlify
#394
ChaosInTheCRD
closed
8 months ago
1
Witness Website on Netlify
#393
ChaosInTheCRD
closed
9 months ago
0
chore: bump actions/dependency-review-action from 4.0.0 to 4.1.1
#392
dependabot[bot]
closed
9 months ago
0
chore: bump github/codeql-action from 3.24.0 to 3.24.3
#391
dependabot[bot]
closed
9 months ago
0
chore: bump fossas/fossa-action from 1.3.1 to 1.3.3
#390
dependabot[bot]
closed
9 months ago
0
chore: bump testifysec/witness-run-action from 0.1.3 to 0.1.5
#389
dependabot[bot]
closed
9 months ago
0
chore: bump actions/dependency-review-action from 4.0.0 to 4.1.0
#388
dependabot[bot]
closed
9 months ago
1
chore: bump golangci/golangci-lint-action from 3.7.0 to 4.0.0
#387
dependabot[bot]
closed
9 months ago
0
chore: bump k8s.io/apimachinery from 0.26.13 to 0.26.14
#386
dependabot[bot]
closed
9 months ago
0
Add Tom as a Witness maintainer
#385
jkjell
closed
9 months ago
0
Adding ability to list attestors
#384
ChaosInTheCRD
closed
8 months ago
5
chore: bump actions/upload-artifact from 4.3.0 to 4.3.1
#383
dependabot[bot]
closed
9 months ago
0
chore: bump actions/download-artifact from 4.1.1 to 4.1.2
#382
dependabot[bot]
closed
9 months ago
0
Link & SLSA attestor
#381
jkjell
closed
6 months ago
1
chore: bump sigstore/cosign-installer from 3.3.0 to 3.4.0
#380
dependabot[bot]
closed
9 months ago
0
chore: bump step-security/harden-runner from 2.6.1 to 2.7.0
#379
dependabot[bot]
closed
9 months ago
0
chore: bump github/codeql-action from 3.23.2 to 3.24.0
#378
dependabot[bot]
closed
9 months ago
0
Add back license scanning badge
#377
jkjell
closed
9 months ago
1
KMS Support
#376
ChaosInTheCRD
closed
9 months ago
4
[Feat]: enhanced debug log level output
#375
Strakeln
closed
5 months ago
3
Previous
Next