docker/attest

Go to file

dependabot[bot] e81016fc31 feat(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/aws (#42 )

Bumps [github.com/sigstore/sigstore/pkg/signature/kms/aws](https://github.com/sigstore/sigstore) from 1.8.3 to 1.8.4.
- [Release notes](https://github.com/sigstore/sigstore/releases)
- [Commits](https://github.com/sigstore/sigstore/compare/v1.8.3...v1.8.4)

---
updated-dependencies:
- dependency-name: github.com/sigstore/sigstore/pkg/signature/kms/aws
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

2024-05-29 12:04:38 +01:00

Merge branch 'main' into feat-add-CODEOWNERS

2024-04-16 10:20:28 -05:00

Return VSA and rich errors from verification (#38 )

2024-05-22 14:49:23 +01:00

Add support for selecting a policy by ID (#41 )

2024-05-28 15:17:37 +01:00

feat: add attest sign/verify

2024-04-29 16:17:58 -05:00

Return VSA and rich errors from verification (#38 )

2024-05-22 14:49:23 +01:00

.gitignore

Initial commit

2024-04-15 11:57:10 -05:00

go.mod

feat(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/aws (#42 )

2024-05-29 12:04:38 +01:00

go.sum

feat(deps): bump github.com/sigstore/sigstore/pkg/signature/kms/aws (#42 )

2024-05-29 12:04:38 +01:00

LICENSE

Initial commit

2024-04-15 11:57:10 -05:00

README.md

docs: pr comments

2024-05-02 16:07:04 -05:00

README.md

attest

library to create, verify, and evaluate policy for attestations on container images

usage

signing and verifying attestations

See example_sign_test.go

See example_verify_test.go

mirroring TUF repositories to OCI

See example_mirror_test.go

using `go-tuf` OCI registry client

See example_registry_test.go