issues
search
sigstore
/
cosign
Code signing and transparency for containers and binaries
Apache License 2.0
4.41k
stars
543
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
chore(deps): bump golangci/golangci-lint-action from 5.3.0 to 6.0.1
#3695
dependabot[bot]
closed
4 months ago
0
chore(deps): bump the actions group with 3 updates
#3694
dependabot[bot]
closed
4 months ago
0
Add PayloadProvider interface to decouple AttestationToPayloadJSON from oci.Signature interface
#3693
codysoyland
closed
4 months ago
1
chore(deps): bump github.com/buildkite/agent/v3 from 3.62.0 to 3.72.0
#3692
dependabot[bot]
closed
4 months ago
1
chore(deps): bump golang.org/x/oauth2 from 0.19.0 to 0.20.0
#3691
dependabot[bot]
closed
5 months ago
0
chore(deps): bump golang.org/x/crypto from 0.22.0 to 0.23.0
#3690
dependabot[bot]
closed
4 months ago
1
chore(deps): bump golang.org/x/term from 0.19.0 to 0.20.0
#3689
dependabot[bot]
closed
4 months ago
1
chore(deps): bump github.com/xanzy/go-gitlab from 0.103.0 to 0.104.0
#3688
dependabot[bot]
closed
5 months ago
0
chore(deps): bump google.golang.org/api from 0.176.1 to 0.177.0
#3687
dependabot[bot]
closed
5 months ago
0
chore(deps): bump the actions group with 3 updates
#3686
dependabot[bot]
closed
5 months ago
0
Reconsider deprecation of SBOM attachments
#3685
marklechner
closed
5 months ago
1
Refactor KMS E2E tests
#3684
cmurphy
closed
5 months ago
2
chore(deps): bump github.com/open-policy-agent/opa from 0.63.0 to 0.64.1
#3683
dependabot[bot]
closed
5 months ago
0
chore(deps): bump the gomod group with 3 updates
#3682
dependabot[bot]
closed
5 months ago
0
chore(deps): bump golangci/golangci-lint-action from 4.0.0 to 5.1.0
#3681
dependabot[bot]
closed
5 months ago
0
chore(deps): bump actions/checkout from 4.1.3 to 4.1.4 in the actions group
#3680
dependabot[bot]
closed
5 months ago
0
fix: close attestationFile
#3679
testwill
closed
5 months ago
1
cosign attach command couldn't attach the rekor-bundle to an image
#3678
ArubaTest
closed
5 months ago
1
`cosign.VerifyImageAttestations` fails to verify attestations, returns `unable to verify bundle: matching bundle to payload: invalid kind value: "dsse"`"
#3677
justpolidor
closed
5 months ago
1
chore(deps): bump the actions group with 2 updates
#3676
dependabot[bot]
closed
5 months ago
0
chore(deps): bump github.com/buildkite/agent/v3 from 3.62.0 to 3.70.0
#3675
dependabot[bot]
closed
5 months ago
1
chore(deps): bump github.com/xanzy/go-gitlab from 0.102.0 to 0.103.0
#3674
dependabot[bot]
closed
5 months ago
0
chore(deps): bump google.golang.org/api from 0.172.0 to 0.176.0
#3673
dependabot[bot]
closed
5 months ago
1
chore(deps): bump go.step.sm/crypto from 0.44.3 to 0.44.6 in the gomod group
#3672
dependabot[bot]
closed
5 months ago
0
cosign verify with certificates requires the --certificate-identity and --certificate-oidc-issuer flags
#3671
dhaus67
closed
5 months ago
2
Fixing issue 3669
#3670
Mukuls77
opened
5 months ago
7
Cosign should check Media Type of the layer before download of the signature
#3669
Mukuls77
opened
5 months ago
0
chore(deps): bump the actions group with 3 updates
#3668
dependabot[bot]
closed
5 months ago
0
chore(deps): bump go.step.sm/crypto from 0.44.2 to 0.44.3 in the gomod group
#3667
dependabot[bot]
closed
5 months ago
0
switch to community repo of reusable-release
#3666
bobcallaway
closed
5 months ago
2
chore(deps): bump github.com/buildkite/agent/v3 from 3.62.0 to 3.69.0
#3665
dependabot[bot]
closed
5 months ago
1
fix latest tag not being created and add latest to the dev image as well and go updates
#3664
cpanato
closed
5 months ago
1
bump scaffolding to v0.6.17 release for testing
#3663
bobcallaway
closed
5 months ago
1
Add v2.2.4 changelog
#3662
haydentherapper
closed
5 months ago
1
Fixes for GHSA-88jx-383q-w4qc and GHSA-95pr-fxf5-86gv
#3661
haydentherapper
closed
5 months ago
0
DNM: Test
#3660
hectorj2f
closed
5 months ago
1
Why calling v2 referrers api and including all signature layer in new signature manifest
#3659
MinerYang
opened
5 months ago
5
Bypass YubiKey Authentication for Self-Generated Key Pairs
#3658
abakerwrs
opened
5 months ago
0
Wrong timestamp inside signature
#3657
RockRich
closed
5 months ago
1
chore(deps): bump sigs.k8s.io/release-utils from 0.7.7 to 0.8.1
#3656
dependabot[bot]
closed
5 months ago
0
chore(deps): bump golang.org/x/sync from 0.6.0 to 0.7.0
#3655
dependabot[bot]
closed
5 months ago
0
chore(deps): bump github.com/buildkite/agent/v3 from 3.62.0 to 3.68.0
#3654
dependabot[bot]
closed
5 months ago
2
chore(deps): bump github.com/spiffe/go-spiffe/v2 from 2.1.7 to 2.2.0
#3653
dependabot[bot]
closed
5 months ago
0
chore(deps): bump github.com/xanzy/go-gitlab from 0.101.0 to 0.102.0
#3652
dependabot[bot]
closed
5 months ago
0
chore(deps): bump golang.org/x/term from 0.18.0 to 0.19.0
#3651
dependabot[bot]
closed
5 months ago
0
chore(deps): bump golang.org/x/oauth2 from 0.18.0 to 0.19.0
#3650
dependabot[bot]
closed
5 months ago
0
chore(deps): bump golang.org/x/crypto from 0.21.0 to 0.22.0
#3649
dependabot[bot]
closed
5 months ago
0
chore(deps): bump the gomod group with 3 updates
#3648
dependabot[bot]
closed
5 months ago
0
chore(deps): bump the actions group with 2 updates
#3647
dependabot[bot]
closed
5 months ago
0
add registry options to cosign save
#3645
JasonPowr
closed
5 months ago
6
Previous
Next