Akash Singhal
Akash Singhal
### What would you like to be added? Currently, configuring notation plugins with the Ratify notation Verifier requires a separate verifier defined just to download the notation plugin from a...
### What would you like to be added? Cosign exposes many different options for configuring signature verification. The Cosign CLI is a good example of the number of flags/options. Ratify...
### What would you like to be added? There are 4 in memory caches each using a different implementation. Instrumenting cache metrics for each will add unnecessary overhead. We should...
### What would you like to be added? Ratify should be configurable to align with Gatekeeper's fail open/close strategy. Fail open behavior: Gatekeeper is set by default to fail open....
### What happened in your environment? Enabled Ratify with 3 replicas and EXPERIMENTAL_RATIFY_HIGH_AVAILABILITY enabled with dapr + redis. For very large clusters 2k pods+, we see some requests timeout due...
### What would you like to be added? Currently, there's no way to specify custom CA certs for a registry for all ORAS store operations. This is helpful when there...
### What would you like to be added? We don't have a full e2e document for local k8s cluster setup with a local registry. Our e2e test uses Kind for...
### What would you like to be added? Ratify’s Azure auth providers rely on a deprecated 2019 preview go sdk to authenticate with the ACR. We should refactor code and...
### What would you like to be added? Ratify supports testing the 2 versions of K8s. These versions are determined adhoc and do not necessarily match the 2 latest versions....
### What happened in your environment? The Azure e2e tests fail on the main branch intermittently. The new test clean up stage seems to run concurrently to the actual test...