Colleen Murphy

icon indicating a website link http://www.gazlene.net/

icon company Google icon location Portland, Oregon

Results 23 issues of Colleen Murphy

Automate community contributions

For now, the current workflow is design for module maintainers to push to master on modulesync and use the git hook to automatically push changes to master on the managed...

Add webhooks to automatically merge pull requests

Right now pull requests must be manually generated, but if #16 is implemented this should be more automatic. The corollary to automatic pull requests is automatic merging of pull requests....

Add validation

sync.rb should validate config_defaults.yml and .sync.yml to make sure that the files described by the configs are actually in the moduleroot.

Make terraform more configurable

#### Summary Make the sigstore terraform module more versatile for different types of deployments, especially development/proof of concept/testing deployments. Makes the following changes: ##### Make TUF bucket member configurable In...

Duplicate global address in terraform modules

**Description** The redis and mysql modules each manage a `google_compute_global_address` resource with name `-priv-ip`: https://github.com/sigstore/scaffolding/blob/0621d5066ef1019615d922bf2e886f97fb93b7aa/terraform/gcp/modules/mysql/mysql.tf#L40 https://github.com/sigstore/scaffolding/blob/0621d5066ef1019615d922bf2e886f97fb93b7aa/terraform/gcp/modules/redis/main.tf#L35 If the modules are being applied as part of the umbrella sigstore module, then...

bug

Add support for search_index params in rekor chart

1 comment

Follow the pattern used by trillian, which can either manage its own database container or connect to a GCP SQL instance. If a container is created, the trillian mysql image...

Include URI for CA verified timestamps

Fixes https://github.com/sigstore/sigstore-go/issues/193 #### Summary #### Release Note #### Documentation

Support intermediate certificates in bundle

14 comment

Add support for processing and verifying a v0.3 bundle that contains a `X509CertificateChain` rather than a single X.509 certificate or public key. Fixes #132 #### Summary #### Release Note ####...

Embedded root.json is expired

1 comment

**Description** The default root.json for the public good instance expired last week: https://github.com/sigstore/sigstore-go/blob/ce459a84121500bf0a658aba8503a5836fd55ad6/pkg/tuf/repository/root.json#L6 **Version** ``` $ git rev-parse --short=8 HEAD ce459a84 ```

bug

Upgrade to TUF v2 client

18 comment

Swap the use of the go-tuf v0.7.0 client from sigstore/sigstore to the v2.0.0 client from sigstore/sigstore-go. This change strictly adds logic to attempt to use the sigstore-go TUF client if...