original idea was that verify would fail if there are files that are not in snapshot: this way the snapshot workflow (in tuf-demo repo) would try to do a new snapshot if verify fails.
this has been a bit lost in some refactor and verify does not currently check if files are are part of snapshot: making new snapshot would work but the tuf-demo workflow does not actually try to make a new snapshot unless verify fails because it wants to avoid doing unnecessary snapshot updates
Two choices:
either the snapshot process should work even when snapshot is not needed (and not create a new version when one isn't needed)
or there needs to be a way to check "do we have metadata versions that are newer than the version in snapshot" outside of snapshot
cc @MVrachev this is what's preventing tuf-demo from working at the moment. I'll have a look some time soon
original idea was that verify would fail if there are files that are not in snapshot: this way the snapshot workflow (in tuf-demo repo) would try to do a new snapshot if verify fails.
this has been a bit lost in some refactor and verify does not currently check if files are are part of snapshot: making new snapshot would work but the tuf-demo workflow does not actually try to make a new snapshot unless verify fails because it wants to avoid doing unnecessary snapshot updates
Two choices:
cc @MVrachev this is what's preventing tuf-demo from working at the moment. I'll have a look some time soon