The existing tests on https://github.com/sigstore/sigstore-conformance/blob/main/test/test_bundle.py could exercise more failure paths, like ensuring you're using the right trust root, ensuring the signed entry timestamp is from the correct timeframe, and that the message signature and digest haven't been tampered with.
Description
The existing tests on https://github.com/sigstore/sigstore-conformance/blob/main/test/test_bundle.py could exercise more failure paths, like ensuring you're using the right trust root, ensuring the signed entry timestamp is from the correct timeframe, and that the message signature and digest haven't been tampered with.