sigstore-website
sigstore-website copied to clipboard
sigstore
Codebase for sigstore.dev
Bumps [express](https://github.com/expressjs/express) from 4.18.2 to 4.19.2. Release notes Sourced from express's releases. 4.19.2 What's Changed Improved fix for open redirect allow list bypass Full Changelog: https://github.com/expressjs/express/compare/4.19.1...4.19.2 4.19.1 What's Changed Fix...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [webpack-dev-middleware](https://github.com/webpack/webpack-dev-middleware) from 5.3.3 to 5.3.4. Release notes Sourced from webpack-dev-middleware's releases. v5.3.4 5.3.4 (2024-03-20) Bug Fixes security: do not allow to read files above (#1779) (189c4ac) Changelog Sourced from...
Bumps [follow-redirects](https://github.com/follow-redirects/follow-redirects) from 1.15.2 to 1.15.6. Commits 35a517c Release version 1.15.6 of the npm package. c4f847f Drop Proxy-Authorization across hosts. 8526b4a Use GitHub for disclosure. b1677ce Release version 1.15.5 of...
Bumps [ip](https://github.com/indutny/node-ip) from 1.1.8 to 1.1.9. Commits 1ecbf2f 1.1.9 6a3ada9 lib: fixed CVE-2023-42282 and added unit test See full diff in compare view [](https://docs.github.com/en/github/managing-security-vulnerabilities/about-dependabot-security-updates#about-compatibility-scores) Dependabot will resolve any...
Currently, due to the direct use of the readme for link previews, sending someone [https://www.sigstore.dev/](https://www.sigstore.dev/) results in a malformed preview description. For example, when sending someone the URL on Discord,...
Signed-off-by: nikhilkalburgi #### Summary Add arrow between developers and publish signed artifact in svg #### Release Note NONE #### Documentation This PR Fixes img Resolves #300
**Description** There is No Arrow in [How sigstore works?](https://www.sigstore.dev/how-it-works) Sigstore Ecosystem Diagram between developers and publish signed artifact.  **I am willing take this task on me**
**Description** The Card image in [How sigstore works?](https://www.sigstore.dev/how-it-works) needs to be centered for a better look  Just compare the difference between Sign Card with center and Verify Card with...
Bumps [postcss](https://github.com/postcss/postcss) from 8.4.25 to 8.4.31. Release notes Sourced from postcss's releases. 8.4.31 Fixed \r parsing to fix CVE-2023-44270. 8.4.30 Improved source map performance (by @romainmenke). 8.4.29 Fixed Node#source.offset (by...
Bumps [browserify-sign](https://github.com/crypto-browserify/browserify-sign) from 4.2.1 to 4.2.2. Changelog Sourced from browserify-sign's changelog. v4.2.2 - 2023-10-25 Fixed [Tests] log when openssl doesn't support cipher [#37](https://github.com/crypto-browserify/browserify-sign/issues/37) Commits Only apps should have lockfiles 09a8995...