STACKITGit/cli
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Update pkg/cmd/attestation/verify/verify.go

Browse source 
Co-authored-by: Andy Feller <andyfeller@github.com>
This commit is contained in:
Phill MV 2024-06-24 13:32:51 -04:00 committed by GitHub
parent 06607d3e95
commit c25dacc33e
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
1 changed files with 1 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

2
pkg/cmd/attestation/verify/verify.go
View file

@ -64,7 +64,7 @@ func NewVerifyCmd(f *cmdutil.Factory, runF func(*Options) error) *cobra.Command
located inside your repository. For this reason, by default this command uses
either the %[1]s--repo%[1]s or the %[1]s--owner%[1]s flag value to validate the SAN.
However, sometimes the caller workflow is not be the same workflow that
However, sometimes the caller workflow is not the same workflow that
performed the signing. If your attestation was generated via a reusable
workflow, then that reusable workflow is the signer whose identity needs to be
validated. In this situation, the signer workflow may or may not be located