Aditya Sirish

Hey @neilnaveen, what's the status of this one? Thanks!

In working on this, we should think about expiry being bumped up during other metadata modifying actions. Should expiry be auto renewed when we add a new rule, for example?

I tend to agree but I'd like to also hear if these are separated in TUF contexts. cc @JustinCappos

Yes, protecting release tags is another rule we should add.

Major features we need added before we can start doing this: * Support for policy-staging for multiple signers on root.json / targets.json * Support for threshold verification / attestations

Current blockers: * #308 * #261 * #260

We now have a document detailing how we envision dogfooding to go: https://github.com/gittuf/gittuf/blob/main/docs/dogfood.md. We've started the phase 1 of dogfooding via GitHub Action workflows. I'm going to keep this issue...

This is blocked on me fiddling with the display package. :( https://github.com/gittuf/gittuf/pull/282/files#diff-9612ef033ee230b6dd921d82f4b9d79c63886ac80599b4275af5e1b6121b596cR14-R30 https://github.com/gittuf/gittuf/pull/282#discussion_r1546557093

@wlynch could you take a look?

Thanks @neilnaveen!