You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Make code / artifact signing possible via the spec. For example, windows artifacts can be signed. Also, output containers (i.e. mariner2/container ) can be signed. This feature would give dalec spec writers control over certain aspects of signing. A rough abstraction would be:
Provide the authority that will sign
Provide the means by which signing will occur (cosign)
Provide what will be signed
individual artifacts? binaries, tarballs, etc
sources and/or source tarballs produced for rpm builds?
output containers?
The text was updated successfully, but these errors were encountered:
Make code / artifact signing possible via the spec. For example, windows artifacts can be signed. Also, output containers (i.e.
mariner2/container) can be signed. This feature would give dalec spec writers control over certain aspects of signing. A rough abstraction would be:sources and/or source tarballs produced for rpm builds?The text was updated successfully, but these errors were encountered: