Anderson Sasaki

It seems other pytest plugins are using [pytest-virtualenv](https://pypi.org/project/pytest-virtualenv/) to generate a disposable virtualenv in their tests.

> LGTM, but wanted to get @ansasaki 's input on the question of **introducing** this new `verifier`-specific parameter (`require_allow_list_signatures`). "Technically", shouldn't it be placed on the `2.1` version of templates?...

We cannot trust in the provided public key blindly, we have to check if it is acceptable somehow. Probably we will need to have some kind of trusted allowlist public...

> @ansasaki shouldn't it (trusted public keys) be implemented in the broader context of "key management" which @stefanberger proposes then? Sure, I think we meant the same thing

I'm sorry that I did not review this before it was merged. There are some mistakes here: - The previous already released template mappings should not be modified - This...

I'll take back part of what I wrote: actually this option was never used in the old templates, even though the option is set in the mappings (with the incorrect...

I need to fix the test scripts to generate the configuration files. Leaving this as a draft for now.

> Only somewhat related: I think we should move the `convert_config.py` out of the scripts folder and into the `keylime/cmd` directory. Then we can add it as an binary to...

> @ansasaki what is the state of this PR now that othe config PR was merged? I'll get back to this, but I can't promise that it will be very...

@stringlytyped Hello, I'll fill a separate PR trying to fix the certificate issues with Python 3.13 and will use the last commit you added. Please let me know if that...