Christian Rebischke
Christian Rebischke
@verdverm I understood Canonical JSON as "ordered" JSON. Question is if cue would validate this correctly: **NOTE: the following files are pseudo .. I have no idea if the syntax...
> You can probably use extra constraints (IsSorted on the object keys through a list comprehension) I think the Canonical JSON spec is more complicated than this. They have weights...
> Wouldn't generating attestations using DSSE help here? There's already some support for it... I think the plan is to **validate** attestations via a schema, not to generate them. I...
This PR is missing more tests for the InTotoRun function. Right now I am only testing the RunCommand func. We might want to test link creation for an empty CmdArgs...
> We should add -x / --no-command to the CLI to indicate no commands. Is it even possible to create an in-toto link attestation without a command being run?
Just to be sure: > We should add -x / --no-command to the CLI to indicate no commands. The `-x` flag is for the subcommand `run`, right?
See PR #37 and #55
This looks really good already. Is there anything we can help with or support you?
@WGH- is enabling dbus a possible workaround for this?
I still think this would be very useful. I don't exactly remember how I worked around this. Either, I played around with different kubeconfigs or I modified the kubeconfig file