Christopher Costa
Christopher Costa
When attempting to generate sbom for a binary drop from a file server, I often have to make multiple attempts before I can successfully generate an sbom. This leads to...
- [ ] This issue is blocking - [ ] This issue is causing unreasonable pain
- [ ] This issue is blocking - [ ] This issue is causing unreasonable pain
- As part of cleanup from 1ES PT conversion, we should examine whether the CodeQL template we provide is still necessary or we can just direct to the 1ES path....
Dotnet-helix-service has a requirement on the .NET 6 runtime because it utilizes secret-manager, which is not yet updated to .NET 8 support. AFTER https://github.com/dotnet/dnceng/issues/1430 is completed and secret-manager targets .NET...
Moving this to its own issue from https://github.com/dotnet/dnceng/issues/1430 dotnet-helix-service cannot move to .NET 8 because it deploys to Service Fabric which does not yet provide a .NET 8 runtime. Service...
The fix for https://github.com/dotnet/dnceng/issues/2885 was to install some missing workloads for building native code during the Helix build. See https://dev.azure.com/dnceng/internal/_git/dotnet-helix-service/pullrequest/39682. The preferred model for Helix, is to install required workloads...
SignTool contains an option for validating strong name signing. Today, in all the .NET Core produce repos, that flag `doStrongNameCheck` is "false". It's never true. If we set it to...
BatchSignInput property was added to SignToolTask so that it could be exposed during unit testing validation. A cleaner solution would be to use the factory pattern and mock out BatchSignUtil...