cfssl_trust
cfssl_trust copied to clipboard
cloudflare
CFSSL's CA trust store repository
Creating Semgrep.yml file - Semgrep is a tool that will be used to scan Cloudflare's public repos for Supply chain, code and secrets. This work is part of Application &...
Hi, the [CA bundle file](https://github.com/cloudflare/cfssl_trust/blob/086bfd7dd73911513bb5a771d994e7fc8e257fc8/ca-bundle.crt) seems to be missing the GTS root CAs: https://pki.goog/repository/#root-cas (GTS Root R1 to R4) For comparison, Mozilla's CA cert store has them: https://curl.se/docs/caextract.html
Bumps [golang.org/x/net](https://github.com/golang/net) from 0.23.0 to 0.36.0. Commits 85d1d54 go.mod: update golang.org/x dependencies cde1dda proxy, http/httpproxy: do not mismatch IPv6 zone ids against hosts fe7f039 publicsuffix: spruce up code gen and...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
Bumps [golang.org/x/crypto](https://github.com/golang/crypto) from 0.21.0 to 0.31.0. Commits b4f1988 ssh: make the public key cache a 1-entry FIFO cache 7042ebc openpgp/clearsign: just use rand.Reader in tests 3e90321 go.mod: update golang.org/x dependencies...
Hi team, We noticed that some SSL.com certificate bundles from their repository (https://www.ssl.com/repository/) are currently missing in this repo. Specifically, our company relies on the following certificates: - https://ssl.com/repo/certs/Entrust-OVTLS-I-R1.pem -...
Rolling trust store release at 2026-01-15T21:38:00+0000. $ cfssl-trust -d ./cert.db -b int release 504h skipping expired certificate (SKI=bba64e766baa847013c2a7e868471d68c37e3e6f, serial=166275597015633439699191517195204885, subject='/certSIGN Code Signing CA Class 3 G2/C=RO/O=certSIGN/OU=certSIGN Code Signing CA Class...
![github-actions[bot] avatar](https://avatars.githubusercontent.com/in/15368?v=4 "github-actions[bot] avatar"){kind=avatar}
