Rakesh Gariganti
Rakesh Gariganti
https://github.com/opencontainers/image-spec/releases/tag/v1.1.0
One of the scenario was discussed in https://github.com/notaryproject/specifications/pull/283#discussion_r1479399825 We need to update the threat model to call out that a signed blob artifact can be transformed as a signed OCI...
Signature verification needs to perform x509 revocation check (CRL/OCSP) and fail if a certificate in the chain is revoked. See https://github.com/notaryproject/notaryproject/blob/main/trust-store-trust-policy-specification.md#certificate-revocation-evaluation
See https://github.com/notaryproject/notation-go/pull/72#discussion_r914513445
We are using go-ldap for parsing Distinguished Names (DN) of a trust policy's `trustedIdentities` field. Although we are using a single function from this library, this dependency is bringing bunch...
Currently, Trust Store unit tests are skipping symlink tests on Windows as Windows requires Admin permissions to create Symlinks (see [this](https://github.com/golang/go/issues/22874)). This issue is to identify a way to run...