CJS

@mozillazg Looks like the difference is that I'm normalizing the string to fully decomposed form using golang.org/x/text/transform and calling transform.Chain(norm.NFD) prior to transliterating with go-unidecode. Before Hex: e38197e381a6e3818fe381a0e38195e38184 U+3057 'し'...

@andyleap ^^

@haya14busa I'm getting the same thing. I'm using the example from https://github.com/reviewdog/reviewdog#github-actions but as-written I get the "reviewdog: fail to open config: .reviewdog.yml not found" message. I placed a .reviewdog.yml...

@pingles Do you have any advice? I've spent days on this. First solution I came up with was to spin up a second set of workers to have the assume...

@Joseph-Irving That is def one way to do it, only concern there is that I don't think there is anything stopping someone who knows the taint name from running a...

@milosgajdos awesome!

Hmm.. it looks like a workaround might be to have the auth service not send a key id, or to have the registry not validate it, but is that a...

@milosgajdos I tried that and if the key is not present in the registry config it results in a panic - "panic: unable to configure authorization (token): token auth requires...

This seems to be the breaking change: https://github.com/distribution/distribution/pull/4096 Docker-registry can no longer process the kid values that were produced by the docker-libtrust library. It's not clear if its an issue...

Confirmed that if I run https://github.com/milosgajdos/distribution/tree/1d410148efe6d1b7fd56457507a9dd465b105ec4 instead, authentication works again.