-
Notifications
You must be signed in to change notification settings - Fork 19
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Tap 4 trust pinning #1
Tap 4 trust pinning #1
Conversation
https://github.com/theupdateframework/taps/blob/awwad-tap-0004-trust-pinning/tap4.md#pin-file It's a subtle point, but the two comment lines here may be slightly misleading:
Where the metadata and targets directories are expected to be is defined on a mirror-to-mirror basis in the repository_mirrors argument to the tuf.client.updater.Updater constructor, and so is flexible beyond this point. You could say "might be at" rather than "would be at". Three mirrors for the same (django, say) repository may have different directories for metadata or targets. |
On 14 September 2016 at 16:27, Sebastien Awwad notifications@github.com
Ah, didn't know that. Please go ahead and edit it! |
Woops, accidentally closed it. Just go ahead and edit master :) |
Begin a PR to merge TAP 4 (Trust Pinning).