issues
search
sigstore
/
sigstore-go
Go library for Sigstore signing and verification
Apache License 2.0
45
stars
21
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Bump github.com/theupdateframework/go-tuf/v2 from 2.0.0 to 2.0.1 in /examples/oci-image-verification
#305
dependabot[bot]
closed
4 days ago
0
Bump github.com/theupdateframework/go-tuf/v2 from 2.0.0 to 2.0.1
#304
dependabot[bot]
closed
4 days ago
0
Bump github.com/sigstore/timestamp-authority from 1.2.2 to 1.2.3
#303
dependabot[bot]
closed
4 days ago
0
Bump github/codeql-action from 3.26.8 to 3.26.9
#302
dependabot[bot]
closed
6 days ago
0
Bump actions/checkout from 4.1.7 to 4.2.0
#301
dependabot[bot]
closed
6 days ago
0
Add interface types for TimestampingAuthority and CertificateAuthority
#300
codysoyland
opened
1 week ago
0
Add Windows to README as tested platform
#299
steiza
closed
6 days ago
0
Add interface for certificate validation
#298
kommendorkapten
opened
1 week ago
4
Support non-Unix OS
#297
abstractionfactory
opened
1 week ago
4
feat: add unit test for online tlog verification
#296
vishal-chdhry
opened
1 week ago
6
Bump github/codeql-action from 3.26.7 to 3.26.8
#295
dependabot[bot]
closed
1 week ago
0
Embedded root.json is expired
#294
cmurphy
opened
2 weeks ago
1
Proposal: TrustedMaterial Interface Refinement
#293
codysoyland
opened
2 weeks ago
4
Bump github/codeql-action from 3.26.6 to 3.26.7
#292
dependabot[bot]
closed
2 weeks ago
0
Use sentinel errors bundle validation in `validateBundle` func
#291
malancas
closed
3 weeks ago
0
Bump golang.org/x/mod from 0.20.0 to 0.21.0
#290
dependabot[bot]
closed
3 weeks ago
1
Bump golang.org/x/crypto from 0.26.0 to 0.27.0
#289
dependabot[bot]
closed
3 weeks ago
0
Allow parsing of certificates from Fulcio if ctlog is disabled
#288
codysoyland
opened
1 month ago
0
Signing fails when Fulcio has ctlog disabled
#287
codysoyland
opened
1 month ago
0
Add hard limits for number of TSA entries, Tlog entries, and attestation subjects/digests
#286
codysoyland
closed
1 month ago
0
Add additional validation for nil elements in Bundles
#285
codysoyland
closed
1 month ago
0
Bump github/codeql-action from 3.26.5 to 3.26.6
#284
dependabot[bot]
closed
1 month ago
0
Fix proof of key possession generation
#283
adityasaky
closed
1 month ago
4
Proof of key possession is inconsistent with Fulcio
#282
adityasaky
closed
1 month ago
4
Bump github/codeql-action from 3.26.2 to 3.26.5
#281
dependabot[bot]
closed
1 month ago
0
Add release workflow
#280
AdamKorcz
opened
1 month ago
5
update year in COPYRIGHT.txt
#279
AdamKorcz
closed
1 month ago
2
add oss-fuzz build script
#278
AdamKorcz
closed
1 month ago
0
Verify certificate validity with only current time
#277
haydentherapper
opened
1 month ago
13
Certificate time is always valid when no timestamp is provided
#276
haydentherapper
opened
1 month ago
1
Bump github/codeql-action from 3.26.0 to 3.26.2
#275
dependabot[bot]
closed
1 month ago
0
Switch in-toto library to github.com/in-toto/attestation
#274
codysoyland
closed
1 month ago
0
Update in-toto library
#273
bdehamer
closed
1 month ago
0
Add fuzz tests for bundle, tlog and verify packages
#272
AdamKorcz
closed
1 month ago
0
Add deprecation message for ProtobufBundle
#271
codysoyland
closed
1 month ago
0
Include URI for CA verified timestamps
#270
cmurphy
closed
3 weeks ago
0
Add file pattern to CODEOWNERS
#269
codysoyland
closed
1 month ago
0
CODEOWNERS file format incorrect
#268
codysoyland
closed
1 month ago
0
Use example.com and remove trademark from tests
#267
codysoyland
closed
1 month ago
0
Use example.com and remove trademarks from test data
#266
codysoyland
closed
1 month ago
0
Bump github.com/sigstore/sigstore from 1.8.7 to 1.8.8 in /examples/oci-image-verification
#265
dependabot[bot]
closed
1 month ago
0
Bump github.com/google/go-containerregistry from 0.20.1 to 0.20.2 in /examples/oci-image-verification
#264
dependabot[bot]
closed
1 month ago
0
Bump github/codeql-action from 3.25.13 to 3.26.0
#263
dependabot[bot]
closed
1 month ago
0
Bump github.com/sigstore/sigstore from 1.8.7 to 1.8.8
#262
dependabot[bot]
closed
1 month ago
0
Bump golang.org/x/crypto from 0.25.0 to 0.26.0
#261
dependabot[bot]
closed
1 month ago
0
Fix crash with missing checkpoint
#260
haydentherapper
closed
1 month ago
1
Verification crashes for `v0.1` bundles missing checkpoints
#259
woodruffw
closed
1 month ago
2
Fix verify DSSE bundles (after signing)
#258
steiza
closed
2 months ago
2
Bundle signer does not correctly verify artifact if bundle content is DSSE
#257
codysoyland
closed
2 months ago
2
Bundle() inline verification of Intoto Statements
#256
ramonpetgrave64
closed
2 months ago
6
Next