Joshua Lock

icon indicating a website link https://www.linkedin.com/in/joshua-g-lock/

icon company Verizon icon location UK

Results 268 comments of Joshua Lock
trafficstars

CI runs on simulated merge commit, but leaves comments on unmerged code

@rdimitrov do you think you could take a look at this?

CI runs on simulated merge commit, but leaves comments on unmerged code

@ethan-lowman-dd can you help us reproduce the results in your screenshot? The PR and merge commit you linked to don't show any Check failures here as we haven't merged the...

Update Python interop tests to python-tuf v1.0.0

As #232 is merged can we rebase this and get it reviewed @znewman01?

Update Python interop tests to python-tuf v1.0.0

np, let us know when you're ready for review!

Describe and delineate "trusted metadata"

When/how trusted metadata is loaded for non-root roles is also not part of the current specification.

Is it safe to use a backstop metadata version when initializing trust?

I really like this idea. It reminds me of @trishankatdatadog's [suggestion](https://github.com/theupdateframework/specification/issues/91#issuecomment-639582774) to include a copy of the root metadata, or at least its hash, in the code. This approach would...

Add example for downloading foo/bar/baz target files

I'll take a stab at this next week.

Add more text describing threshold computation

Rebased on the latest master with a new version and date added. Please take a look @trishankatdatadog @mnm678

Confirm terminating roles logic from spec

I'm not one of the original authors, but my interpretation of the spec and the Diplomat paper matches the expected outcome suggested here.

Questions about min_roles_in_agreement and many to one delegations

See related bug in the reference implementation theupdateframework/tuf#920 where adding the same key with a different signature scheme enables a single key to fulfil a threshold of > 1