light tool to create/sign (via kms) fulcio/tsa certs (ca, leaf etc)

[ianhundere]

Description

this is something we automated w/ smallstep's step-cli tool, but i've been playing with the smallstep crypto library to do the same and was curious if there'd be interest in accepting a small cloud agnostic go app to specifically create/sign (via awskms, cloudkms, or azurekms) certificates for fulcio, tsa etc either in the helm charts or elsewhere ( e.g. scaffolding).

ps tho i understand the intent in keeping the helm charts simple as mentioned by @bobcallaway.

[vipulagarwal]

I think the community will definitely benefit with some tooling in this area. @sfox-equinix wrote a tool for us that helps with awskms fulcio pki. I am sure others might have their own tooling solving the same thing.

[ianhundere]

closing this in favor of cross post.

https://github.com/sigstore/scaffolding/issues/1334