-
Notifications
You must be signed in to change notification settings - Fork 81
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
sign-root-targets for bobcallaway #674
sign-root-targets for bobcallaway #674
Conversation
Signed-off-by: Bob Callaway <bcallaway@google.com>
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I see one signature added for the keyid matching Bob's new, v5+ keyid listed in current keyholders.
STAGED METADATA
Outputting metadata verification at /Users/jlock/Projects/sigstore/root-signing-ceremony/repository...
Verifying targets.json...
Contains 1/3 valid signatures from the current staged metadata
targets version 6, expires 2023/08/28
Verifying root.json...
Contains 1/3 valid signatures from the current staged metadata
Contains 1/3 valid signatures from the previous root
root version 6, expires 2023/08/28
$ GITHUB_USER=kommendorkapten BRANCH=ceremony/2023-02-28 ./scripts/verify.sh 674
...
+ ./verify repository --repository /Users/kommendorkapten/git/root-signing/repository --staged
STAGED METADATA
Outputting metadata verification at /Users/kommendorkapten/git/root-signing/repository...
Verifying targets.json...
Contains 1/3 valid signatures from the current staged metadata
targets version 6, expires 2023/08/28
Verifying root.json...
Contains 1/3 valid signatures from the current staged metadata
Contains 1/3 valid signatures from the previous root
root version 6, expires 2023/08/28
... Signature maded by key |
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
STAGED METADATA
Outputting metadata verification at /home/asraa/git/root-signing/repository...
Verifying targets.json...
Contains 1/3 valid signatures from the current staged metadata
targets version 6, expires 2023/08/28
Verifying root.json...
Contains 1/3 valid signatures from the current staged metadata
Contains 1/3 valid signatures from the previous root
root version 6, expires 2023/08/28
Very cool!
GITHUB_USER=pwelch BRANCH=ceremony/2023-02-28 ./scripts/verify.sh 674
STAGED METADATA
Outputting metadata verification at /Users/pwelch/code/sigstore/root-signing/repository...
Verifying root.json...
Contains 1/3 valid signatures from the current staged metadata
Contains 1/3 valid signatures from the previous root
root version 6, expires 2023/08/28
Verifying targets.json...
Contains 1/3 valid signatures from the current staged metadata
targets version 6, expires 2023/08/28 |
|
Signed-off-by: Bob Callaway <bcallaway@google.com>
Signed-off-by: Bob Callaway <bcallaway@google.com>
Signed-off-by: Bob Callaway <bcallaway@google.com>
* Add staged repository metadata (#673) Signed-off-by: GitHub <noreply@github.com> Co-authored-by: GitHub <noreply@github.com> * sign-root-targets for bobcallaway (#674) Signed-off-by: Bob Callaway <bcallaway@google.com> * sign-root-targets for joshuagl (#675) Signed-off-by: Joshua Lock <jlock@vmware.com> * sign-root-targets for dlorenc (#677) Signed-off-by: Dan Lorenc <dlorenc@chainguard.dev> * sign-root-targets for SantiagoTorres (#683) Signed-off-by: Santiago Torres Arias <santiago@archlinux.org> * sign-root-targets for mnm678 (#685) Signed-off-by: Marina Moore <mnm678@gmail.com> * Update Snapshot and Timestamp (#687) Signed-off-by: sigstore-review-bot <sigstore-review-bot@users.noreply.github.com> * publish for kommendorkapten (#688) Signed-off-by: Fredrik Skogman <kommendorkapten@github.com> * update snapshot and timestamp (#698) Signed-off-by: GitHub <noreply@github.com> Co-authored-by: kommendorkapten <kommendorkapten@users.noreply.github.com> * publish for kommendorkapten (#699) Signed-off-by: Fredrik Skogman <kommendorkapten@github.com> --------- Signed-off-by: GitHub <noreply@github.com> Signed-off-by: Bob Callaway <bcallaway@google.com> Signed-off-by: Joshua Lock <jlock@vmware.com> Signed-off-by: Dan Lorenc <dlorenc@chainguard.dev> Signed-off-by: Santiago Torres Arias <santiago@archlinux.org> Signed-off-by: Marina Moore <mnm678@gmail.com> Signed-off-by: sigstore-review-bot <sigstore-review-bot@users.noreply.github.com> Signed-off-by: Fredrik Skogman <kommendorkapten@github.com> Co-authored-by: GitHub <noreply@github.com> Co-authored-by: Bob Callaway <bobcallaway@users.noreply.github.com> Co-authored-by: Joshua Lock <jlock@vmware.com> Co-authored-by: dlorenc <lorenc.d@gmail.com> Co-authored-by: Santiago Torres <santiago@archlinux.org> Co-authored-by: Marina Moore <mnm678@users.noreply.github.com> Co-authored-by: Fredrik Skogman <kommendorkapten@github.com> Co-authored-by: kommendorkapten <kommendorkapten@users.noreply.github.com>
Summary
Release Note
Documentation