actions/attest
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
90 Commits 1 Branch 30 Tags
v1.3.1
Commit Graph

21 Commits

Author SHA1 Message Date
Brian DeHamer
4fa34e85c5 enforce 16MB limit on predicate size (#80) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-06-03 09:41:25 -07:00
Brian DeHamer
9e752e3d76 batch processing w/ exponential backoff (#79) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-06-03 07:56:25 -07:00
Brian DeHamer
5b17eb7cb0 fix bug w/ private-signing input (#77) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-05-28 13:26:14 -07:00
Brian DeHamer
faa6467995 refactor core attestation logic (#73) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-05-28 11:00:03 -07:00
Brian DeHamer
3ff4eb4c69 centralize collection of action inputs (#72) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-05-24 11:01:44 -07:00
Brian DeHamer
80d9f23382 process subjects in batches (#67) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-05-22 07:55:00 -07:00
Brian DeHamer
38ff958ab6 downcase subject name for OCI images (#63) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-05-14 08:11:10 -07:00
Brian DeHamer
3f67a24e31 bump @sigstore/oci from 0.3.0 to 0.3.2 (#61) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-05-10 08:10:56 -07:00
Brian DeHamer
58fa41a101 send api errors to gha debug log (#59) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-05-09 12:34:14 -07:00
Brian DeHamer
b0d8b47eb7 include more detail in error logging (#58) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-05-09 12:34:01 -07:00
Brian DeHamer
d442d85e12 ensure subject globs match only files (#54) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-05-06 11:52:03 -07:00
Brian DeHamer
c58d52c41d limit attestation subject count (#53) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-05-06 11:51:42 -07:00
Brian DeHamer
94082a9d2e add list support for subjectPath input (#51) 
* add list support for subjectPath input

Signed-off-by: Brian DeHamer <bdehamer@github.com>

* bump package version to 1.1.0

Signed-off-by: Brian DeHamer <bdehamer@github.com>

---------

Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-05-06 08:32:02 -07:00
Brian DeHamer
495f094150 tweak summary output (#43) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-04-26 13:23:19 -07:00
Brian DeHamer
a6dded75c9 bump @actions/attest from 1.1.0 to 1.2.1 (#41) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-04-25 11:03:54 -07:00
Brian DeHamer
fe2f1fbc42 update annotation scheme for OCI bundles (#29) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-04-22 09:41:18 -07:00
Brian DeHamer
3b95763d7e more test coverage (#18) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-02-29 17:02:56 -08:00
Brian DeHamer
525454b125 choose proper sigstore instance when attesting (#11) 
Signed-off-by: Brian DeHamer <bdehamer@github.com>
 2024-02-27 16:47:20 -08:00
ejahnGithub
d83c83490f fixed pr 2024-02-23 08:41:44 -08:00
ejahnGithub
e3c685d193 init attest action 2024-02-22 07:53:51 -08:00
Brian DeHamer
aaaeb08d4e Initial commit 2024-02-20 11:22:22 -08:00