Hayden B
Hayden B
**Description** In https://github.com/sigstore/rekor/issues/988, we added signed checkpoints (signatures over the root hash) to upload and verification responses where an inclusion proof is returned. However, these checkpoints are not persisted, so...
I propose removing the periodic process "watch" that records tree heads. Recording old tree heads does not aid in the calculation of consistency proofs, since those are calculated by clients...
**Description** See https://github.com/namely/docker-protoc This solves the issue of a mismatch between the locally installed protoc and the one used to check for updated generated code in the GHA workflow.
## Goal Create a standard set of claims that should be present in OIDC tokens from CI systems such as GitHub Actions, Cirrus CI, GitLab, Circle CI, etc. ## Background...
**Description** The Fulcio V1 API will be turned down in the coming months. https://github.com/sigstore/sigstore-rs/blob/main/src/fulcio/mod.rs#L20 will need to be updated to https://github.com/sigstore/fulcio/blob/main/fulcio.proto#L65. Fulcio V2 supports either gRPC or HTTP.
**Description** The Fulcio V1 API will be turned down in the coming months. https://github.com/sigstore/sigstore-js/blob/main/src/client/fulcio.ts#L55 will need to be updated to https://github.com/sigstore/fulcio/blob/main/fulcio.proto#L65. We support either gRPC or HTTP.
**Description** Support for uploading a certificate chain, not just a leaf certificate, was added awhile ago (https://github.com/sigstore/rekor/pull/747). I don't recall if there was a specific motivation at the time, but...
**Description** Context threads: * https://github.com/kubernetes/kube-openapi/issues/315 * https://github.com/kubernetes/kubernetes/pull/112988 * https://github.com/kubernetes/kube-openapi/pull/319 OpenAPI's JSON unmarshalling is quite slow, and there's been some efforts in the k8s community to create a more performant marshaller....
**Description** Currently, on each entry upload, a go routine publishes key-value pairs to Redis for index values (email, subject, etc) mapped to an entry. If the go routine fails, the...
**Description** There are two changes we should make: 1. Make the origin more URL like. This isn't a hard requirement, but aligns with the structure of an origin for other...