docker/attest

Go to file

dependabot[bot] f3354d1251 feat(deps): bump github.com/google/go-containerregistry (#81 )

Bumps [github.com/google/go-containerregistry](https://github.com/google/go-containerregistry) from 0.19.2 to 0.20.0.
- [Release notes](https://github.com/google/go-containerregistry/releases)
- [Changelog](https://github.com/google/go-containerregistry/blob/main/.goreleaser.yml)
- [Commits](https://github.com/google/go-containerregistry/compare/v0.19.2...v0.20.0)

---
updated-dependencies:
- dependency-name: github.com/google/go-containerregistry
  dependency-type: direct:production
  update-type: version-update:semver-minor
...

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

2024-07-12 10:27:37 +01:00

Enable GCP integration test (#82 )

2024-07-09 15:02:49 +01:00

feat: add EmbeddedRoot type

2024-07-10 17:30:35 -05:00

feat: export embedded root names

2024-07-11 09:55:00 -05:00

feat: add attest sign/verify

2024-04-29 16:17:58 -05:00

Various fixes (#63 )

2024-06-21 22:12:42 +01:00

.gitignore

Initial commit

2024-04-15 11:57:10 -05:00

codecov.yml

Unify functions for use in sign & verify --vsa (#71 )

2024-07-05 09:29:14 +01:00

go.mod

feat(deps): bump github.com/google/go-containerregistry (#81 )

2024-07-12 10:27:37 +01:00

go.sum

feat(deps): bump github.com/google/go-containerregistry (#81 )

2024-07-12 10:27:37 +01:00

LICENSE

Initial commit

2024-04-15 11:57:10 -05:00

README.md

Generate coverage when tests are run (#64 )

2024-06-24 14:26:07 +01:00

README.md

attest

library to create, verify, and evaluate policy for attestations on container images

usage

signing and verifying attestations

See example_sign_test.go

See example_verify_test.go

mirroring TUF repositories to OCI

See example_mirror_test.go

using `go-tuf` OCI registry client

See example_registry_test.go