Dimitrij Drus

Actually, there is more. Since goreleaser cannot properly sign sbom and attach it to the container images, there are https://github.com/dadrus/heimdall/blob/4f018677b6e2e6b2b5a2cf30220b6cd90fdc8227/.github/workflows/ci.yaml#L428-L453 (for dev images) and https://github.com/dadrus/heimdall/blob/4f018677b6e2e6b2b5a2cf30220b6cd90fdc8227/.github/workflows/ci.yaml#L529-L562 (for the released images) in...

@spencerschrock: you're right, #3772 indeed won't help One question: Is there some information expected beyond what is available with Sigstore provenance? Here what is available. If you e.g. download https://github.com/dadrus/heimdall/releases/download/v0.13.0-alpha/heimdall_v0.13.0-alpha_darwin_amd64.tar.gz-keyless.pem...

Thank you for the comment, @emsearcy. Yeah, the approach would indeed allow only one leading wildcard. So, things like `a.b.c.com`, `*.b.c.com`, `*.c.com` would be possible, but not `a.*.c.com`. In principle...

@davseby , @swithek: As you can see in the PR description, tests is an open topic. I actually started implementing those locally, but run in some limitations related to the...

@swithek: You're very welcome :) and excuse me for the belated answer and the updates as well. I’ve updated the implementation based on your suggestion, with a couple of deviations,...

@swithek: Please excuse me for the longer silence. The new updates implement the approach discussed in https://github.com/jellydator/ttlcache/pull/152#discussion_r1842184242 and ff. Please review

@swithek: All your requests have been addressed. As you may have noticed, I’ve also updated the title and description of this PR. Please have another look.

I had to delete some of my "review" comments that you responded to in https://github.com/jellydator/ttlcache/pull/152#discussion_r1866634560 because gh wouldn't let me resolve them otherwise. I don’t have any additional topics to...

I was able to overcome the issue by applying the following modifications to the implementation of the endpoint: ```python @router.post("/{scope_id}/data/update") async def publish_data_update_event( update: DataUpdate, claims: JWTClaims = Depends(authenticator), scope_id:...

@bhavik-patel24: Alternatively, you could consider the approach described here: https://dadrus.github.io/heimdall/dev/guides/authn/oidc_first_party_auth/. While this would introduce an additional component, it would support a much wider range of use cases. Btw. even though...