You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
As discussed in Slack, we would like to have attestations uploaded to our attestation store (s3) similar to how the intoto type behaves. This is all because of the choice of cosign to abandon the upload of the intoto type and only have the dsse type.
This implementation does not break existing functionality so I don't think it requires reversioning of the DSSE type. This also still allows prevention of attestation upload in the public rekor instance.
I've gone ahead and raised a PR, but am open to any suggestions.
The text was updated successfully, but these errors were encountered:
As discussed in Slack, we would like to have attestations uploaded to our attestation store (s3) similar to how the intoto type behaves. This is all because of the choice of cosign to abandon the upload of the intoto type and only have the dsse type.
This implementation does not break existing functionality so I don't think it requires reversioning of the DSSE type. This also still allows prevention of attestation upload in the public rekor instance.
I've gone ahead and raised a PR, but am open to any suggestions.
The text was updated successfully, but these errors were encountered: