Merge pull request #56 from shibumi/shibumi/54-intoto-capturing-imple…

…mentation in-toto-run implementation
in-toto · Aug 20, 2020 · 4aecd39 · 4aecd39
2 parents d11e317 + 70fdec2
commit 4aecd39
Show file tree

Hide file tree

Showing 21 changed files with 1,766 additions and 582 deletions.
diff --git a/README.md b/README.md
@@ -27,13 +27,7 @@ production use.
 If any of these features are necessary for your use case please let us know and
 we will try to provide them as soon as possible!
 
-* [Signature schemes, other than `rsassa-pss-sha256` and `ed25519`](https://github.com/in-toto/in-toto-golang/issues/27)
 * [GPG keys](https://github.com/in-toto/in-toto-golang/issues/26)
 * [Layout parameter substitution](https://github.com/in-toto/in-toto-golang/issues/29)
-* [in-toto-run functionality](https://github.com/in-toto/in-toto-golang/issues/30)
-  *Note: A basic `runlib` does exist, however it is only used to execute the
-  inspection commands in a layout and create the corresponding metadata. It
-  cannot be used to create signed evidence (link metadata) for steps in a
-  layout.*
 * [Hashing algorithms, other than `sha256` (in artifact recording)](https://github.com/in-toto/in-toto-golang/issues/31)
 * [Exclude patterns (in artifact recording)](https://github.com/in-toto/in-toto-golang/issues/33)
diff --git a/in_toto/examples_test.go b/in_toto/examples_test.go
@@ -23,7 +23,7 @@ func ExampleInTotoVerify() {
 	// InTotoVerify.  The layout represents the root of trust so it is a good
 	// idea to sign it using multiple keys.
 	var pubKey Key
-	err := pubKey.LoadPublicKey(LayoutKeyPath)
+	err := pubKey.LoadKey(LayoutKeyPath, "rsassa-pss-sha256", []string{"sha256", "sha512"})
 	if err != nil {
 		fmt.Printf("Unable to load public key: %s", err)
 	}