1 Pull request merged by 1 person

• Add conformance test commands to Makefile

  #4023 merged Jan 30, 2025

2 Pull requests opened by 1 person

• chore(deps): bump the gomod group across 1 directory with 14 updates

  #4021 opened Jan 27, 2025

• chore(deps): bump the actions group across 1 directory with 6 updates

  #4022 opened Jan 27, 2025

3 Issues opened by 3 people

• tuf: failed to download 8.root.json

  #4026 opened Jan 29, 2025

• Error in offline validation when using additional annotations

  #4024 opened Jan 29, 2025

• error during command execution: signing ***: reading key: invalid pem block

  #4020 opened Jan 24, 2025

6 Unresolved conversations

Sometimes conversations happen on old items that aren’t yet closed. Here is a list of all the Issues and Pull Requests with unresolved conversations.

• Refactor verifyNewBundle into library function

  #4013 commented on Jan 29, 2025 • 6 new comments

• Add support for new bundle specification for attesting/verifying OCI image attestations

  #3889 commented on Jan 24, 2025 • 1 new comment

• Cosign doesn't accept Digicert's TSA certificate when verifying a signature

  #3632 commented on Jan 29, 2025 • 0 new comments

• Support signing 'raw' in-toto statements

  #4019 commented on Jan 30, 2025 • 0 new comments

• Upgrade to TUF v2 client

  #3844 commented on Jan 28, 2025 • 0 new comments

• add `sha256:...` as alternative way to specify a blob

  #4016 commented on Jan 24, 2025 • 0 new comments