pin to shas and upgrade actions workflows and osquery client #350
Chainguard Enforce / Enforce - Commit Signing
succeeded
Jan 22, 2024 in 1s
Successfully verified commit signature.
CLAIM | DESCRIPTION | |
---|---|---|
✅ | Found Git signature | |
✅ | Validated Git signature | |
✅ | Validated Rekor entry | |
✅ | Allowed by policy |
Details
Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 523658381501840557175037742799295913201462951042 (0x5bb9a7690a56f8d69dbcafc3c8e3c7fffb683c82)
Signature Algorithm: ECDSA-SHA384
Issuer: O=sigstore.dev,CN=sigstore-intermediate
Validity
Not Before: Jan 19 20:58:08 2024 UTC
Not After : Jan 19 21:08:08 2024 UTC
Subject: Subject Public Key Info:
Public Key Algorithm: ECDSA
Public-Key: (256 bit)
X:
81:4d:16:78:71:e2:77:f6:8f:10:5f:a4:99:db:9a:
7c:9d:1b:93:0c:68:32:f9:b6:d7:27:52:bd:fc:90:
68:56
Y:
ab:5d:33:f8:17:84:05:70:ec:7a:51:2c:88:52:96:
13:9d:3d:3b:cf:3b:a9:10:da:e5:19:ed:36:48:19:
bc:23
Curve: P-256
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
Code Signing
X509v3 Subject Key Identifier:
D8:08:03:64:E7:A0:A3:90:D2:35:74:91:59:CA:40:BC:8C:B5:44:F6
X509v3 Authority Key Identifier:
keyid:DF:D3:E9:CF:56:24:11:96:F9:A8:D8:E9:28:55:A2:C6:2E:18:64:3F
X509v3 Subject Alternative Name: critical
email:jed@chainguard.dev
oidcIssuer:
https://accounts.google.com
Unknown extension 1.3.6.1.4.1.57264.1.8
Signed Certificate Timestamp:
BHoAeAB2AN09MGrGxxEyYxkeHJlnNwKiSl643jyt/4eKcoAvKe6OAAABjSOER0MAAAQDAEcwRQIgCurBZktSXu05nFClC4GYdKLu94IQFwTK930OtBMR0jcCIQDeElwLOuJi/RgWm+zWnY5kSK6j6O4vW3rjkABGb9bs0g==
Signature Algorithm: ECDSA-SHA384
30:65:02:31:00:cc:c7:c0:bc:41:9e:0b:05:9e:3f:e1:53:90:
54:fc:0c:05:0b:19:33:5a:64:51:a0:1a:8f:f2:99:df:e2:77:
63:d3:63:4e:e7:63:89:4a:1d:33:03:cc:be:f5:45:c2:bf:02:
30:69:e7:51:3a:cb:40:db:c0:88:1e:be:13:2d:35:73:c1:1a:
8c:b3:89:57:8d:97:22:1d:83:73:15:b3:66:8c:9b:ef:fd:78:
0f:ed:d5:4c:b5:cd:5f:dc:6d:f4:1b:98:42
Rekor Entry
{
"body": "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",
"integratedTime": 1705697888,
"logID": "c0d23d6ad406973f9559f3ba2d1ca01f84147d8ffc5b8445c224f98b9591801d",
"logIndex": 64955869,
"verification": {
"inclusionProof": {
"checkpoint": "rekor.sigstore.dev - 2605736670972794746\n61374841\nd6J+m/kJpiNqPBujI/mSZVEdjJs98ARHdCjxgtRdbrk=\nTimestamp: 1705938141201625487\n\n— rekor.sigstore.dev wNI9ajBGAiEAwfOo7eRJ6rFRn4e6GqTqDlthoYe2bj0y5WwHR/BATsgCIQD/mgCawtSptlKja55TdY4Kt/KC0Vlt9pEjh4JH0ziThA==\n",
"hashes": [
"c277f616d05020b788c33abe08f4c0d1e36ab56167aac538638dc7f6036d811b",
"0dfccd3bfe76e3e5068b7cabf90f1db0f98860feea66587af5da8019143fa61d",
"adb7a2c87f39c4428b7d6b55f0946552790f422b48eb5fb84d74face9f74d43a",
"1aadfe25a81c0b12923363f9e7631b6c689fb5c6391555169332c473c9e6359f",
"4e9526e173023cba387c9a7f34768167793fe6834e588d13c89cc994f94ca772",
"0ddfac2dec18990dbbfad99fb05e160c9711619ee3f00edcc2c8bddcbe746b37",
"0af07c1d6beb1632a55c613f14bab84f0b67da8d9b2e1a8eb4f3876d6e586165",
"fb0c8330c7fd14597fb99c8268e6e4a4cac0ff3c56ee0f94ccbf0f330b4b9f2d",
"05311d910132c822ffca836539c8f513dbf48c382af719d35348c5a05f8d93f2",
"2d9f60351e52ff0facc25141ac828dc757560b1e42fcf61f69adde5685ea8e8e",
"1f4db8e04a7ef6969aea8eefb4c014e46a64dc0981edca899fc5fa13431f3b67",
"796d0f8c69b3cd30d0936bf3c4d3ba4c75a7dfbadbd059bf857da8b5171d488f",
"f39821176f4eb3d38c4a5fed8ec0a83b661dda66136f6c39a0b7b21fde80abff",
"e1d64cfef3a954be7302e4bb71d29dae6a5595b2a2e49017ec96dc25f26edfe5",
"e5a015383a0f0612e70edbd7d42286f4fc3bbedc189631af4e787d391f524a15",
"ecbc74db480f8b60c78576e01204a1d7ccc0f6e8adf08732dba66479de8ee265",
"03575610e1de79c7e0554028f62b837315059820898d42f67b7b0bf946161398",
"493c3c26ddcd01ece3729deae7bc3aa534be953e56bb85d3418a4e3554bfb565",
"a2b89e1e278d3218447ef38358d4cb814808a119a34293260c4976a677dc4971",
"f1e50dbab480fa2f6bb0829c6e6acad31d2a37d1fa2daf47f33ecd9ef03aed3f",
"9f1efda8fe9a51f5e067a3b8e270b53c039f796f14ac326b1385448bbc684556",
"609f580a82b10086ea968261ee2ac419083f5d98c8f1e807a27a6207e5009cda",
"51e5d80682cc50abdb392ed3a0cb1aa1b946e1f4bff103d04d314620155e13bd",
"98c486feb5d87092a78a46c4b5be04868654900affc2e86ffb20074dc73a883a",
"6969c49bd73f19bf28a5eaeabd331ddd60502defb2cd3d96e17b741c80adec6c"
],
"logIndex": 60792438,
"rootHash": "77a27e9bf909a6236a3c1ba323f99265511d8c9b3df004477428f182d45d6eb9",
"treeSize": 61374841
},
"signedEntryTimestamp": "MEQCIHfQbzOSiCNfjrIM62XZqbEDFvlggMSibSAb1rz+dRHzAiAYRWAqwHKrhCgfHKF/ymoksSz1eDd4NCmQkKbNr99bMQ=="
}
}
Loading