issues
search
in-toto
/
witness
Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.
https://witness.dev
Apache License 2.0
416
stars
60
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Feature Request: Generate Human-Readable Reports from `witness verify` Outputs
#326
colek42
opened
11 months ago
1
Adding help to Makefile and updating `make test` target
#325
ChaosInTheCRD
closed
11 months ago
0
chore: bump actions/dependency-review-action from 2.5.1 to 3.1.4
#324
dependabot[bot]
closed
11 months ago
0
chore: bump github/codeql-action from 2.22.8 to 2.22.9
#323
dependabot[bot]
closed
11 months ago
0
chore: bump actions/setup-go from 4.1.0 to 5.0.0
#322
dependabot[bot]
closed
11 months ago
0
chore: bump actions/checkout from 3.6.0 to 4.1.1
#321
dependabot[bot]
closed
11 months ago
0
chore: bump actions/upload-artifact from 3.0.0 to 3.1.3
#320
dependabot[bot]
closed
11 months ago
0
Fix initial pre-commit violations
#319
jkjell
closed
12 months ago
0
Improve gha
#318
kairoaraujo
closed
1 year ago
5
Git LFS support for git attestor
#317
matglas
opened
1 year ago
3
[StepSecurity] Apply security best practices
#316
step-security-bot
closed
1 year ago
1
Fixing failed metav1.Time test error for `verify`
#315
ChaosInTheCRD
closed
12 months ago
3
Refactoring error messages to use `%w` formatting directive and fix logging issue
#314
ChaosInTheCRD
closed
12 months ago
1
Update README.md - fixing quickstart url
#313
clemenko
closed
1 year ago
0
chore: bump github/codeql-action from 2.22.7 to 2.22.8
#312
dependabot[bot]
closed
1 year ago
0
docs: correct sign policy file command in README.md
#311
shenxianpeng
closed
1 year ago
0
Current download binary command in README is incorrect
#310
shenxianpeng
closed
1 year ago
1
chore: bump github.com/go-jose/go-jose/v3 from 3.0.0 to 3.0.1
#309
dependabot[bot]
closed
1 year ago
0
chore: bump actions/setup-go from 2 to 4
#308
dependabot[bot]
closed
1 year ago
0
chore: bump actions/cache from 2 to 3
#307
dependabot[bot]
closed
1 year ago
0
chore: bump github/codeql-action from 2.22.6 to 2.22.7
#306
dependabot[bot]
closed
1 year ago
0
chore: bump github.com/stretchr/testify from 1.8.1 to 1.8.4
#305
dependabot[bot]
closed
1 year ago
0
chore: bump github.com/sirupsen/logrus from 1.9.0 to 1.9.3
#304
dependabot[bot]
closed
1 year ago
0
chore: bump golangci/golangci-lint-action from 2 to 3
#303
dependabot[bot]
closed
1 year ago
0
chore: bump ossf/scorecard-action from 2.1.3 to 2.3.1
#302
dependabot[bot]
closed
1 year ago
0
chore: bump actions/checkout from 2 to 4
#301
dependabot[bot]
closed
1 year ago
0
chore: bump github/codeql-action from 1.0.26 to 2.22.6
#300
dependabot[bot]
closed
1 year ago
0
chore: bump docker/login-action from 2 to 3
#299
dependabot[bot]
closed
1 year ago
0
Add dependabot config and add reusable workflow for calling witness
#298
jkjell
closed
1 year ago
0
fix: updating urls to `in-toto` from `testifysec` and `-L` to the curl for version
#297
lmco-seth
closed
1 year ago
7
install-witness.sh currently does not install witness
#296
lmco-seth
closed
1 year ago
0
Install script issue
#295
matglas
closed
1 year ago
3
Add maintainers file
#294
jkjell
closed
1 year ago
0
Witness sign an attestation with a `fulcio-token`
#293
MFry
opened
1 year ago
1
feat: add algo hash list for digest calc in config
#292
DataDavD
closed
12 months ago
8
Fix /docs/witness_completion.md formatting
#291
BHunter2889
opened
1 year ago
1
chore(deps): bump google.golang.org/grpc from 1.53.0 to 1.56.3
#290
dependabot[bot]
closed
1 year ago
0
docs: Update key to signer-file-key-path in getting starter .witness.yaml
#289
mikhailswift
closed
1 year ago
0
docs: Update key to signer-file-key-path in getting starter .witness.yaml
#288
blhagadorn
closed
1 year ago
6
Getting started example doesn't work - "failed to load signers"
#287
matglas
closed
1 year ago
1
[Snyk] Security upgrade golang from 1.21rc3 to 1.21.3
#286
colek42
closed
1 year ago
0
chore(deps): bump golang.org/x/net from 0.7.0 to 0.17.0
#285
dependabot[bot]
closed
1 year ago
0
Create examples of using go-witness
#283
mikhailswift
opened
1 year ago
1
Maven attester not resolving versions or scope if not explicitly set
#282
garethahealy
opened
1 year ago
2
KMS/Remote Signing Support
#278
mikhailswift
opened
1 year ago
1
Feat:vault signer
#276
mikhailswift
closed
1 year ago
0
`Error running git attestor` when following the quick start guide
#275
MFry
closed
1 year ago
8
fix: update github actions to use new fulcio url
#274
mikhailswift
closed
1 year ago
0
[Snyk] Security upgrade golang from 1.20.1 to 1.21rc3
#273
colek42
closed
1 year ago
0
[Snyk] Security upgrade golang from 1.20.1 to 1.20.6
#272
colek42
closed
1 year ago
0
Previous
Next