sigstore / sigstore-python

A Sigstore client written in Python

https://pypi.org/p/sigstore

Other

226 stars 49 forks source link

Remove support for detached materials #1183

Open woodruffw opened 3 hours ago

woodruffw commented 3 hours ago

Detached materials have been deprecated in favor of Sigstore bundles (.sigstore.json or .sigstore) for a long time now. We should remove support from the sign and verify commands entirely.

718 is the main blocker for this, since we'll redirect users towards creating a bundle from their old detached materials.

woodruffw commented 2 hours ago

Assigning this to the next major release, since this will be a major breaking change.

sigstore / sigstore-python

Remove support for detached materials #1183

718 is the main blocker for this, since we'll redirect users towards creating a bundle from their old detached materials.

149

771