community icon indicating copy to clipboard operation
community copied to clipboard
verified publisher icon helm

Support additional signing mechanisms than PGP

Open scottrigby opened this issue 2 years ago • 3 comments

Helm currently supports PGP. There has been discussion about supporting additional signing mechanisms.

Andy volunteered to contribute to this HIP.

May relate to https://github.com/helm/community/blob/main/hips/hip-0015.md

scottrigby avatar Nov 30 '23 18:11 scottrigby

related work (signing without bundling)

https://github.com/helm/helm/pull/10184

FrenchBen avatar Nov 30 '23 18:11 FrenchBen

Anything related to cosign planned? might compliment the oci support nicely.

kfox1111 avatar Nov 30 '23 18:11 kfox1111

@kfox1111 yes, integrating the sigstore project would be one of the signing options

sabre1041 avatar Nov 30 '23 19:11 sabre1041