autograph
autograph copied to clipboard
mozilla-services
Mozilla's digital signature service
Bumps [github.com/DataDog/datadog-go](https://github.com/DataDog/datadog-go) from 3.7.2+incompatible to 4.8.3+incompatible. Release notes Sourced from github.com/DataDog/datadog-go's releases. v4.8.3 See the Changelog for the details. v4.8.1 See the Changelog for the details. v4.8.0 See the Changelog...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [github.com/ThalesIgnite/crypto11](https://github.com/ThalesIgnite/crypto11) from 0.1.0 to 1.2.5. Release notes Sourced from github.com/ThalesIgnite/crypto11's releases. v1.2.1 Library no longer panics if MaxSessions=1. See #60 and #61. v1.2.0 Change Log v1.2.0 (2019-09-17) Full Changelog...
Changes: * add an example docker compose override file for local dev * add a `unit-test` make target (the image is only used for CI, but it's included since we...
`genericrsa` in hsm mode depends on crypto11's support for PSS salt length, which cannot be set to auto. We should have integration tests for that.
nit: Seeing this set of fields in a number of locations, I wonder if this should be moved to a struct that can output a `log.Fields`. _Originally posted by @ajvb...
AJ asked in https://github.com/mozilla-services/autograph/pull/782#discussion_r724413533: > Is there verification of `os.RemoveAll()` running successfully within `SignFiles`? and we don't test the side effects of signers that read and write to disk and...
gpg analog of #381 - [ ] find and configure a backend like [gnupg-pkcs11-scd](https://manpages.debian.org/bullseye/gnupg-pkcs11-scd/gnupg-pkcs11-scd.1.en.html) - [ ] confirm [CloudHSM supports](https://docs.aws.amazon.com/cloudhsm/latest/userguide/pkcs11-mechanisms.html) the signing ops gpg needs (should just be RSA sign/verify)...
When cloudhsm is enabled, apk2 can use it to sign files: https://docs.aws.amazon.com/cloudhsm/latest/userguide/client-history.html#client-version-3-0