Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Start using cosign transparency log using rekor and fulcio #122

Open
marcofranssen opened this issue Jan 14, 2022 · 0 comments
Open

Start using cosign transparency log using rekor and fulcio #122

marcofranssen opened this issue Jan 14, 2022 · 0 comments
Labels
enhancement New feature or request

Comments

@marcofranssen
Copy link
Member

marcofranssen commented Jan 14, 2022
edited
Loading

By using cosigns experimental feature it will start using fulcio and rekor.

This adds additional security by adding a transparancy log as well PKCS11 based certificates.

As the feature is still experimental we might want to hold back for a bit to have this feature mature a bit more.

We need to add the certificate lines back

abc16c4

as well enable the experimental feature see https://github.com/caarlos0/goreleaserfiles/blob/main/cosign_docker.yml#L6

Doing so enables us to do keyless code signing of our releases.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@marcofranssen