issues
search
in-toto
/
witness
Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.
https://witness.dev
Apache License 2.0
416
stars
60
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
fix: update goreleaser action to use go 1.20.x
#271
mikhailswift
closed
1 year ago
0
fix: Fulcio client id flag interpreted as OIDC issuer
#270
alexashley
closed
1 year ago
2
feat/fix: multiple ci fixes, publish docker images
#269
mikhailswift
closed
1 year ago
1
security: respond to weaknesses identified in the in-toto sec audit
#268
colek42
opened
1 year ago
0
epic: Witness to Support Vault API as a Key Provider
#267
colek42
closed
1 year ago
2
publish upx packed binaries.
#266
colek42
opened
1 year ago
0
chore(deps): bump github.com/cloudflare/circl from 1.3.2 to 1.3.3
#265
dependabot[bot]
closed
1 year ago
1
fix: 263 Updating filename for expected checksum in install script
#264
jonathan-dorsey
closed
1 year ago
2
install-witness shell script fails to curl checksums file
#263
jonathan-dorsey
closed
1 year ago
5
Merge Commits
#262
colek42
opened
1 year ago
0
add option to output gitoid to a file
#261
colek42
opened
1 year ago
0
Calculate GitOID as part of CalculateDigestSet function
#260
colek42
opened
1 year ago
1
Option to sandbox process we are running with a user namespace
#259
colek42
opened
1 year ago
0
Warning Issue with GCP Attestor
#258
colek42
opened
1 year ago
1
chore: replace usage of deprecated cobra function
#257
mikhailswift
closed
1 year ago
1
chore: add note about go-witness
#256
colek42
closed
1 year ago
1
feat: add support for fetching certs with github token
#255
colek42
closed
1 year ago
2
Remove attestors
#254
colek42
closed
1 year ago
0
Manifest digest for OCI attestor
#253
colek42
closed
1 year ago
0
refactor: allow only subjects to be provided to witness verify
#252
mikhailswift
closed
1 year ago
1
chore: update archivst -> archivista
#251
mikhailswift
closed
1 year ago
5
docs: add docs for defining timestamp authorities in policy
#250
mikhailswift
closed
1 year ago
1
feat: attestor config
#249
mikhailswift
closed
1 year ago
3
Support Fulcio Ambient OIDC Token
#248
colek42
closed
1 year ago
1
fix:various fixes and improvements in install script
#247
colek42
closed
1 year ago
2
chore(deps): bump github.com/containerd/containerd from 1.6.6 to 1.6.18
#246
dependabot[bot]
closed
1 year ago
1
[Snyk] Security upgrade golang from 1.18 to 1.20.1
#245
colek42
closed
1 year ago
1
possible bug report on witness verify with -s
#244
dsperbeck-gdit
closed
1 year ago
2
sudo should not be required in install script
#243
colek42
closed
1 year ago
0
[Snyk] Security upgrade golang from 1.18 to 1.20
#242
snyk-bot
closed
1 year ago
0
Better sandboxing
#241
colek42
opened
1 year ago
7
in-toto conformance tracking issue
#240
colek42
opened
1 year ago
0
Support COSE Envelope.
#239
colek42
opened
1 year ago
1
Timerstamp serialization error
#238
colek42
opened
1 year ago
2
Timestamp request fails on 201
#237
colek42
closed
1 year ago
1
chore/update readme
#236
colek42
closed
1 year ago
1
chore(deps): bump github.com/containerd/containerd from 1.6.6 to 1.6.12
#235
dependabot[bot]
closed
1 year ago
2
chore(deps): bump github.com/theupdateframework/go-tuf from 0.3.1 to 0.3.2
#234
dependabot[bot]
closed
1 year ago
4
Create Hashed Rekord for attestations (Rekor)
#233
colek42
opened
1 year ago
0
Add support for uploading attestations directly to S3 compatible store
#232
colek42
opened
1 year ago
0
Add tags to git attestor
#231
colek42
closed
1 year ago
1
Add documentation about TSA support
#230
colek42
closed
1 year ago
0
feat/add install script
#229
colek42
closed
1 year ago
4
Patch 1
#228
colek42
closed
1 year ago
1
chore: bump to go 1.19
#227
mikhailswift
closed
1 year ago
1
Use SCT to verify timestamps if available.
#226
colek42
opened
1 year ago
0
Go version in go.mod needs to bump to 1.19
#225
teq0
closed
1 year ago
1
Fix some typos
#224
kipz
closed
1 year ago
2
chore: fix documentation
#223
colek42
closed
1 year ago
1
README clarification
#222
4x0v7
closed
1 year ago
1
Previous
Next