Remove vendored go-securesystemslib #266
Assignees
Labels
dependencies
Pull requests that update a dependency file
Comments
|
FWIW, I'm a maintainer of go-securesystemslib as well, so I'm going to be involved in the go-securesystemslib improvement effort. I will take this issue on when the library is ready for direct use in gittuf. |
adityasaky
added
dependencies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add a description
go-securesystemslib is vendored in #264. We must remove this copy of the library once our changes are upstreamed or our requirements are met through other APIs. Note that an effort has started in the in-toto community to make go-securesystemslib more robust, which is the reason we haven't already upstreamed our changes.
Relevant log output if the discussion pertains to existing gittuf functionality
No response
Code of Conduct
The text was updated successfully, but these errors were encountered: