Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

RFC for linking packages to their source and build #626

Merged
merged 39 commits into from
Nov 7, 2022
Merged
Changes from 33 commits
Commits
Show all changes
39 commits
Select commit Hold shift + click to select a range
6e6ec6c
RFC for linking packages to their source and build
feelepxyz Aug 8, 2022
8677dcf
Update accepted/0000-link-packages-to-source-and-build.md
feelepxyz Aug 8, 2022
9d6d28e
Update accepted/0000-link-packages-to-source-and-build.md
feelepxyz Aug 8, 2022
3432621
Update accepted/0000-link-packages-to-source-and-build.md
feelepxyz Aug 8, 2022
620b247
Addressing PR comments
feelepxyz Aug 8, 2022
aec5894
certs > certificates
feelepxyz Aug 8, 2022
3833cb4
Update accepted/0000-link-packages-to-source-and-build.md
feelepxyz Aug 9, 2022
821e639
Clarify provenance
feelepxyz Aug 9, 2022
849b928
Add Jenkins comparison
feelepxyz Aug 9, 2022
956afb4
Add tuf repo and root
feelepxyz Aug 9, 2022
147777d
Update accepted/0000-link-packages-to-source-and-build.md
feelepxyz Aug 9, 2022
5ed0772
Update accepted/0000-link-packages-to-source-and-build.md
feelepxyz Aug 9, 2022
78a7ee7
Rename CLI arg
feelepxyz Aug 9, 2022
262a0b3
Add Circle and GitLab to env table
feelepxyz Aug 9, 2022
0c69e1c
Update accepted/0000-link-packages-to-source-and-build.md
feelepxyz Aug 9, 2022
6b77dc9
Update accepted/0000-link-packages-to-source-and-build.md
feelepxyz Aug 9, 2022
da8a901
Add note on sct and slsa prov verifier
feelepxyz Aug 9, 2022
7c1b9ed
Update accepted/0000-link-packages-to-source-and-build.md
feelepxyz Aug 9, 2022
ce838d5
Update sequence diagram to include id token req
feelepxyz Aug 9, 2022
996b6d5
Fix ref to reverse proxy
feelepxyz Aug 9, 2022
fdf8d9d
Clarify sigstore conf is from the configured reg
feelepxyz Aug 9, 2022
ab81e1c
Add note about perf benchmark
feelepxyz Aug 9, 2022
718650a
Add note about commitments
feelepxyz Aug 10, 2022
edb7937
Add section on long-lived ci/cd secrets
feelepxyz Aug 11, 2022
3a030f9
Add a summary to implementation details
feelepxyz Aug 11, 2022
a2c45c2
Update provenance generation
feelepxyz Aug 11, 2022
65e2a91
Clarify sigstore-js env support
feelepxyz Aug 11, 2022
6f67e0b
Add section on additional events
feelepxyz Aug 11, 2022
90c3673
Add section on unanswered questions
feelepxyz Aug 11, 2022
44d0c62
Add note about audit sig
feelepxyz Aug 11, 2022
fff96cd
Expand Web PKI
feelepxyz Aug 15, 2022
be4ecba
Expand CAs
feelepxyz Aug 15, 2022
4927444
Run a transparency log monitor for Rekor
feelepxyz Aug 18, 2022
17aa6a7
Update accepted/0000-link-packages-to-source-and-build.md
feelepxyz Aug 19, 2022
842db1e
Update non-goals and trusted builder
feelepxyz Aug 25, 2022
0715e14
Update accepted/0000-link-packages-to-source-and-build.md
feelepxyz Oct 12, 2022
16822dd
Merge remote-tracking branch 'origin/main' into link-packages-to-sour…
feelepxyz Oct 25, 2022
9bfdb52
Add note about travis credits
feelepxyz Oct 25, 2022
53e2206
Sigstore GA, release > publish attestation
feelepxyz Nov 7, 2022
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
Loading