notation
notation copied to clipboard
notaryproject
A CLI tool to sign and verify artifacts
Implement as per https://github.com/notaryproject/notation/issues/325
> IMO default behavior should be paginated as ORAS [referrers](https://github.com/oras-project/artifacts-spec/blob/main/manifest-referrers-api.md) API is paginated. Not having pagination will result in an unnecessary load on servers when 1st returned item in the...
As Notation will support both JWS and COSE signing envelop in RC.1, users need to add a tag `--envelope-type cose` using the `notation sign` to sign artifacts each time, see...
fix https://github.com/notaryproject/notation/issues/383 Signed-off-by: Feynman Zhou
There was a missing `.` in the image tag for `ghcr.io/oras-project/registry:v1.0.0-rc2`. See https://github.com/oras-project/distribution/pkgs/container/registry
Implementing key command according to the spec Intended Outcome notation key command allows manipulation of key config as defined in the spec Additional context
Implementing list command according to the spec Intended Outcome notation plugin list command lists plugin as defined in the spec Additional context
Implementing login/logout command according to the spec Intended Outcome notation login/logout command works as defined in the spec Additional context
Implementing list command according to the spec Intended Outcome notation list command list signatures as defined in the spec Additional context
Threat modeling involves identifying ways that an adversary might try to attack notation and then designing mitigations to prevent, detect or reduce the impact of those attacks. Aspects: Dir +...