Andrew Pan
Andrew Pan
### Describe the feature you'd like In [`sigstore-python`](https://github.com/sigstore/sigstore-python), we mark modules as internal / semiprivate by prefixing them with `_`. I'd like `interrogate` to consider members of these modules as...
~~Blocked on #311.~~ #### Summary Adds Signed Certificate Timestamp verification and hooks it up to the bundle signing flow. SCT verification ensures that the signing certificate in a given operation...
Requires #326. - [ ] Detached materials - [ ] 0.3 bundles - [X] Staging instance - [X] Custom trust root Current failing tests: ``` FAILED test/test_bundle.py::test_verify_v_0_3 - test.client.ClientFail: FAILED...
See #13234. - [x] Login from new IP address - [x] Added API tokens ## Renders ### Login from new IP address #### HTML #### Text ### API Token added...
Hey! Thanks for maintaining `rust-tuf` :) I'm [trying this library out] with the Sigstore TUF instance, evaluating if we can replace [`tough`](https://github.com/awslabs/tough) in our Sigstore client. One thing that I...
Follow-on for #326. We should determine if we need to support CT/AT signing key types besides secp256r1. I haven't observed any other key types in PGI TUF materials, but support...