STACKITGit/cli - Git hosting by STACKIT

Author	SHA1	Message	Date
Meredith Lancaster	ce87c746b2	remove signer-ref option Signed-off-by: Meredith Lancaster <malancas@github.com>	2025-02-24 10:44:29 -07:00
Meredith Lancaster	1c326c74f0	add checks to cert extensions func Signed-off-by: Meredith Lancaster <malancas@github.com>	2025-01-30 08:14:13 -07:00
Meredith Lancaster	0fd09eb5ff	pr feedback Signed-off-by: Meredith Lancaster <malancas@github.com>	2024-11-21 15:30:41 -07:00
Meredith Lancaster	2d41225dd5	pr feedback Signed-off-by: Meredith Lancaster <malancas@github.com>	2024-11-21 09:11:18 -07:00
Meredith Lancaster	f48e6b56e3	verify cert extensions function should return filtered result list Signed-off-by: Meredith Lancaster <malancas@github.com>	2024-11-19 14:38:28 -07:00
Meredith Lancaster	762e99d151	fix function param calls Signed-off-by: Meredith Lancaster <malancas@github.com>	2024-11-18 08:19:07 -07:00
Meredith Lancaster	c518a3b1f5	Update pkg/cmd/attestation/verification/extensions.go Co-authored-by: Phill MV <phillmv@github.com>	2024-11-18 08:18:04 -07:00
Meredith Lancaster	e4cd729a7b	simplify verifyCertExtensions Signed-off-by: Meredith Lancaster <malancas@github.com>	2024-11-07 14:59:21 -07:00
Meredith Lancaster	ffc499110d	Merge branch 'trunk' into verify-attestation-monotonic-tests	2024-11-06 08:08:40 -07:00
Meredith Lancaster	a5eca00d0d	remove emtpy string checks Signed-off-by: Meredith Lancaster <malancas@github.com>	2024-11-01 08:20:32 -06:00
Meredith Lancaster	8336f797ad	use sigstore-go certificate.Summary type for criteria Signed-off-by: Meredith Lancaster <malancas@github.com>	2024-10-31 16:27:21 -06:00
Meredith Lancaster	a81cb730fc	update VerifyCertExtensions args Signed-off-by: Meredith Lancaster <malancas@github.com>	2024-10-31 16:14:28 -06:00
Meredith Lancaster	e6d0a067e6	Update pkg/cmd/attestation/verification/extensions.go Co-authored-by: Phill MV <phillmv@github.com>	2024-10-31 16:09:45 -06:00
Meredith Lancaster	4bd46334ff	return the last verification error for now Signed-off-by: Meredith Lancaster <malancas@github.com>	2024-10-31 12:38:37 -06:00
Meredith Lancaster	d29a4a751a	update extension verification logic Signed-off-by: Meredith Lancaster <malancas@github.com>	2024-10-31 10:44:36 -06:00
Meredith Lancaster	97262d8ce7	add test case for monotonic verification success Signed-off-by: Meredith Lancaster <malancas@github.com>	2024-10-31 10:25:45 -06:00
Meredith Lancaster	b44c9d3003	undo policy method changes Signed-off-by: Meredith Lancaster <malancas@github.com>	2024-10-30 15:23:50 -06:00
Phill MV	28c2308458	While we're at it, let's ensure VerifyCertExtensions can't be tricked the same way.	2024-10-10 11:22:22 -04:00
Brian DeHamer	8c8423aa3d	better error for att verify custom issuer mismatch Signed-off-by: Brian DeHamer <bdehamer@github.com> Co-authored-by: Zach Steindler <steiza@github.com> Co-authored-by: Phill MV <phillmv@github.com>	2024-09-16 12:38:12 -07:00
Fredrik Skogman	1b59ec8ad0	This commit introduces tenancy aware attestation policy building. This is done by inspecting the current hostname to determine if tenancy is enabled. The attestation commands also accepts a --hostname parameter, that is used to pick the current host, similar to how the GH_HOST variable can be used. Signed-off-by: Fredrik Skogman <kommendorkapten@github.com>	2024-09-11 10:49:17 +02:00
ejahnGithub	1eaf712dd1	update test and remove logic to check SourceRepositoryOwnerURI is empty string	2024-07-31 07:29:43 -07:00
ejahnGithub	580ddf6997	minor fix	2024-07-30 13:14:16 -07:00
ejahnGithub	e21e5ef5c5	update test	2024-07-30 13:09:28 -07:00
ejahnGithub	dc4e9cb532	handle attest case insensitivity	2024-07-30 12:11:25 -07:00

24 commits