github sdk: CloneRepo forces checkout #669
Merged
Chainguard Enforce / Enforce - Commit Signing
succeeded
Dec 16, 2024 in 0s
Successfully verified commit signature.
| CLAIM | DESCRIPTION | |
|---|---|---|
| ✅ | Found Git signature | |
| ✅ | Validated Git signature | |
| ✅ | Validated Rekor entry | |
| ✅ | Allowed by policy |
Details
Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 184037947011381877036009604992866316136047271042 (0x203c8c059f3d2cfc0a2735724c0e486bfe495c82)
Signature Algorithm: ECDSA-SHA384
Issuer: O=sigstore.dev,CN=sigstore-intermediate
Validity
Not Before: Dec 16 22:19:11 2024 UTC
Not After : Dec 16 22:29:11 2024 UTC
Subject: Subject Public Key Info:
Public Key Algorithm: ECDSA
Public-Key: (256 bit)
X:
5a:a4:33:35:65:be:67:c0:cc:f4:20:09:ea:f3:2b:
36:2d:3f:bc:9c:c7:3d:32:38:97:e7:dd:83:e6:75:
a0:f7
Y:
dc:f1:e1:cb:d7:fa:61:dd:5b:52:1a:90:9c:de:4f:
a9:a7:ae:7e:55:1d:ee:b4:12:99:f7:a9:8e:e7:4b:
d8:51
Curve: P-256
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
Code Signing
X509v3 Subject Key Identifier:
35:9C:8E:06:DA:94:CB:BF:C7:10:46:81:C4:4F:13:27:26:B5:4C:43
X509v3 Authority Key Identifier:
keyid:DF:D3:E9:CF:56:24:11:96:F9:A8:D8:E9:28:55:A2:C6:2E:18:64:3F
X509v3 Subject Alternative Name: critical
email:jason@chainguard.dev
oidcIssuer:
https://accounts.google.com
Unknown extension 1.3.6.1.4.1.57264.1.8
Signed Certificate Timestamp:
BHoAeAB2AN09MGrGxxEyYxkeHJlnNwKiSl643jyt/4eKcoAvKe6OAAABk9GNzTwAAAQDAEcwRQIgKAlgx3p7QkwKpNzBzSFzVVheDv1pFteJS+HaKbC+Z40CIQCwHPfT8C9X70vdnBh/SuinzmFt4cbE9K0sqXT0NxdGCw==
Signature Algorithm: ECDSA-SHA384
30:64:02:30:38:d0:e8:d2:56:ed:8d:90:92:0e:e3:db:36:01:
c0:03:e5:07:ae:b1:45:50:73:fd:a4:80:1e:1b:17:ed:bd:e7:
3b:57:e8:c4:07:00:25:df:ca:ac:0c:35:1f:57:00:86:02:30:
42:c6:d9:16:0f:b7:8f:94:53:61:9e:a6:5c:30:0b:1f:c3:63:
fb:96:de:12:94:69:3e:eb:2c:5c:54:70:67:bb:92:d9:94:25:
b7:94:b5:0c:70:97:9a:df:42:14:77:2c
Rekor Entry
{
"body": "eyJhcGlWZXJzaW9uIjoiMC4wLjEiLCJraW5kIjoiaGFzaGVkcmVrb3JkIiwic3BlYyI6eyJkYXRhIjp7Imhhc2giOnsiYWxnb3JpdGhtIjoic2hhMjU2IiwidmFsdWUiOiIzMWJjODIxNjVkMDE3YmQ3N2MyOGI0NjJjM2Q5NmZmMzFjODNjMDA1ODI2OGViYjcwODI0ZmFhNGRhMmViNDQ2In19LCJzaWduYXR1cmUiOnsiY29udGVudCI6Ik1FVUNJUUNndDMzRTY2a3hISTRZWkxOZ3R1YWcvemZ2bVh0SnNJNFRxWHlmLzRzeER3SWdTME9VL3dMamhyM05oRlp6K05Ielc1WkhnZVFaTm9jM3lRNWorbm0zdkJjPSIsInB1YmxpY0tleSI6eyJjb250ZW50IjoiTFMwdExTMUNSVWRKVGlCRFJWSlVTVVpKUTBGVVJTMHRMUzB0Q2sxSlNVTjZSRU5EUVd4UFowRjNTVUpCWjBsVlNVUjVUVUphT0RsTVVIZExTbnBXZVZSQk5VbGhMelZLV0VsSmQwTm5XVWxMYjFwSmVtb3dSVUYzVFhjS1RucEZWazFDVFVkQk1WVkZRMmhOVFdNeWJHNWpNMUoyWTIxVmRWcEhWakpOVWpSM1NFRlpSRlpSVVVSRmVGWjZZVmRrZW1SSE9YbGFVekZ3WW01U2JBcGpiVEZzV2tkc2FHUkhWWGRJYUdOT1RXcFJlRTFxUlRKTmFrbDRUMVJGZUZkb1kwNU5hbEY0VFdwRk1rMXFTWGxQVkVWNFYycEJRVTFHYTNkRmQxbElDa3R2V2tsNmFqQkRRVkZaU1V0dldrbDZhakJFUVZGalJGRm5RVVZYY1ZGNlRsZFhLMW80UkUwNVEwRktOblpOY2s1cE1DOTJTbnBJVUZSSk5Hd3JabVFLWnl0YU1XOVFabU00WlVoTU1TOXdhRE5XZEZOSGNFTmpNMnNyY0hBMk5TdFdVak4xZEVKTFdqazJiVTgxTUhaWlZXRlBRMEZZU1hkblowWjFUVUUwUndwQk1WVmtSSGRGUWk5M1VVVkJkMGxJWjBSQlZFSm5UbFpJVTFWRlJFUkJTMEpuWjNKQ1owVkdRbEZqUkVGNlFXUkNaMDVXU0ZFMFJVWm5VVlZPV25sUENrSjBjVlY1Tnk5SVJVVmhRbmhGT0ZSS2VXRXhWRVZOZDBoM1dVUldVakJxUWtKbmQwWnZRVlV6T1ZCd2VqRlphMFZhWWpWeFRtcHdTMFpYYVhocE5Ga0tXa1E0ZDBsbldVUldVakJTUVZGSUwwSkNaM2RHYjBWVllXMUdlbUl5TlVGWk1taG9ZVmMxYm1SWFJubGFRelZyV2xoWmQwdFJXVXRMZDFsQ1FrRkhSQXAyZWtGQ1FWRlJZbUZJVWpCalNFMDJUSGs1YUZreVRuWmtWelV3WTNrMWJtSXlPVzVpUjFWMVdUSTVkRTFEYzBkRGFYTkhRVkZSUW1jM09IZEJVV2RGQ2toUmQySmhTRkl3WTBoTk5reDVPV2haTWs1MlpGYzFNR041Tlc1aU1qbHVZa2RWZFZreU9YUk5TVWRMUW1kdmNrSm5SVVZCWkZvMVFXZFJRMEpJZDBVS1pXZENORUZJV1VFelZEQjNZWE5pU0VWVVNtcEhValJqYlZkak0wRnhTa3RZY21wbFVFc3pMMmcwY0hsblF6aHdOMjgwUVVGQlIxUXdXVE5PVUVGQlFRcENRVTFCVW5wQ1JrRnBRVzlEVjBSSVpXNTBRMVJCY1dzelRVaE9TVmhPVmxkR05FOHZWMnRYTVRSc1REUmtiM0J6VERWdWFsRkphRUZNUVdNNU9WQjNDa3d4Wm5aVE9USmpSMGc1U3paTFprOVpWek5vZUhOVU1ISlRlWEJrVUZFelJqQlpURTFCYjBkRFEzRkhVMDAwT1VKQlRVUkJNbU5CVFVkUlEwMUVhbEVLTms1S1Z6ZFpNbEZyWnpkcU1ucFpRbmRCVUd4Q05qWjRVbFpDZWk5aFUwRklhSE5ZTjJJemJrOHhabTk0UVdOQlNtUXZTM0pCZHpGSU1XTkJhR2RKZHdwUmMySmFSbWNyTTJvMVVsUlpXalp0V0VSQlRFZzRUbW9yTldKbFJYQlNjRkIxYzNOWVJsSjNXamQxVXpKYVVXeDBOVk14UkVoRFdHMTBPVU5HU0dOekNpMHRMUzB0UlU1RUlFTkZVbFJKUmtsRFFWUkZMUzB0TFMwSyJ9fX19",
"integratedTime": 1734387552,
"logID": "c0d23d6ad406973f9559f3ba2d1ca01f84147d8ffc5b8445c224f98b9591801d",
"logIndex": 155743914,
"verification": {
"inclusionProof": {
"checkpoint": "rekor.sigstore.dev - 1193050959916656506\n33843508\n9F3A7HqFejz2Ox+Vg8uhO/JP00VuNWIp7fnNjLsU+W4=\n\n— rekor.sigstore.dev wNI9ajBFAiB30ZAgHMeXSm9iYfoVdXWX5PkGCw2iJyWwtonbfou0CgIhAPAn6TGJTlfEplIDHRt4rAecuTH7CfDIi75cR2KCKabE\n",
"hashes": [
"0e0bdccfbbfeb9d4d87196b25dc4c853f5182b844e9f2b7ad8e189e4f7d3141a",
"6ca031739c52e28c50836f999a147a0afaada5c8ab9ab66c4615c332e3ffb3d5",
"9568e8ca041d7cd666d807dd268c80d9cab1a780a2aeecc021482982b56e8da2",
"a6cbcb3f14844d5d6e5bc4e4383670d09aad9099f5d8eb86036dbfd69c8c4d2d",
"2ad6f1e946c5042fab5ca9ce93dffbd39f857d9ca1b6e6f7c92aface8d8c2d41",
"0e41d6a4a0242c8870d2a274db89ce3e87d1adc587e69066d2af25ff775e6fbf",
"5f37410c8032c17f049d578c96debd4e29e9f0aecf8b5bb210bf9d53e937e5f9",
"91aa266f97154ecf36a5cb55d7f4ce465e395059b40d490d332765c648b15f8b",
"dccaf8b5090102b80b1ba371b21a86c2025585173a863d0087a1652d1163a1c3",
"7ea0adc35cd82da7c6de5132c66a72bb4d396b5683036f051c85bd09516f72c7",
"4b13f403b5accb3dfb1ea67fd8ee5f7cf8f4d801d9c8d2c7837832e08489c16e",
"9ea26b4b3d9bd30a9f7b7f6e8be0a24559a0a15d9873d66ac0f2de8b5579004d",
"cbeb5717aced08e8cd726c765084eade8cd8fde73bb4de9832aafbae07d373c1",
"66438c98b6d020331e6c5bf37633d989ce4bd83de7bf02ad4be763411ff5de44",
"2396b4c3abc1926976408d1e1aa94638d5181058ceee7b4fa8ffe41cd7262fbd",
"5336168fbdcdf17bc65d280c41b07b43439eb4c19d88cece8c53cb373dccef4a",
"bde9b268c8f435ad4b3236c1ffd0e692af13fa301bde8fb20844a001ac940015"
],
"logIndex": 33839652,
"rootHash": "f45dc0ec7a857a3cf63b1f9583cba13bf24fd3456e356229edf9cd8cbb14f96e",
"treeSize": 33843508
},
"signedEntryTimestamp": "MEUCIQDTqsVOVKWJDbjb/jAojd1OH+gFOCjypsdHQwJCUcC9TQIgbRVNy/E22h0D0bIzbKwXOEc7wScUpqwD1hTnaftPuu0="
}
}
Loading