Cole Kennedy
Cole Kennedy
Multicast is alive and well in company intranets. The browser plugin depreciation has forced us to move our customers to a desktop application, increasing maintenance costs. WebUDP with multicast support...
Currently, the API only supports searching by a single parameter. I would like to be able to give the API a list of hashes and to return all of the...
This is on hold. We will most likely invert the API to use a deny list rather than allow list. If the workload matches a list of "bad" programs we...
Witness should be able to pull in attestations from an external agent that collects BPF logs. https://github.com/cilium/tetragon seems like a good fit based on their GRPC API Initial research shows...
where multiple flags are allowed i.e. the attestor flag `-a` attestors added at the command line should be in addition to those defined in the config file.
Write an example shell script showing the verification of a software artifact over an air gap. - Should generate CA for this example (see [makefile](https://github.com/in-toto/in-toto-golang/blob/master/Makefile) in in-toto) 1. Look up...
Only the first policy error found is returned. We should evaluate the entire document and accumulate the errors.
Users may want to search for attestations in multiple rekor servers. i.e. private attestation and public attestation from project sigstore's public server.
This should be broken into two PRs. Reason: JSON Schema will allow validation and completion in IDEs. Including OPA (ref: https://www.openpolicyagent.org/docs/edge/schemas/) https://www.jsonschema.net/ is a tool that can help. However, work...