Add Release Attestation (#319)

* Adding proposed release attestation * Make name field explicitly a filename as it would appear on disk * fix typo * Clarify immutability, subject, and purl parsing * Soften registry requirements, add security clarification, and add releaseId * Adding proto definition, clarifying language, adding links, reflowing text * Adjusting spec to use jsonc * Reformat Fields for linter; put version back at v0.1 * Add migration example * fix formatting * fix typos * Clarify UUID generation; add container image example * Update spec/predicates/release.md Signed-off-by: Zach Steindler <steiza@github.com> Co-authored-by: Marcela Melara <marcela.melara@intel.com>
in-toto · Feb 5, 2024 · 3e26e49 · 3e26e49
1 parent af56189
commit 3e26e49
Show file tree

Hide file tree

Showing 3 changed files with 251 additions and 0 deletions.
diff --git a/protos/in_toto_attestation/predicates/release/v0/release.proto b/protos/in_toto_attestation/predicates/release/v0/release.proto
@@ -0,0 +1,11 @@
+syntax = "proto3";
+
+package in_toto_attestation.predicates.release.v0;
+
+option go_package = "github.com/in-toto/attestation/go/predicates/release/v0";
+option java_package = "io.github.intoto.attestation.predicates.release.v0";
+
+message Release {
+  string purl = 1;
+  optional string release_id = 2;
+}
diff --git a/spec/predicates/README.md b/spec/predicates/README.md
@@ -24,11 +24,13 @@ our [vetting process], and may be of general interest:
 -   [SPDX]: SPDX-formatted BOM for software artifacts.
 -   [CycloneDX]: CycloneDX BOM for software artifacts.
 -   [Vulnerability]: Defines the metadata to share the results of vulnerability scanning on software artifacts.
+-   [Release]: Details an artifact that is part of a given release version.
 -   [Test Result]: A generic schema to express results of any type of tests.
 
 [CycloneDX]: https://cyclonedx.org/
 [Link]: link.md
 [New Predicate Guidelines]: ../../docs/new_predicate_guidelines.md
+[Release]: release.md
 [Runtime Traces]: runtime-trace.md
 [SCAI Report]: scai.md
 [Vulnerability]: vuln.md

diff --git a/spec/predicates/release.md b/spec/predicates/release.md
@@ -0,0 +1,238 @@
+# Predicate type: Release
+
+Type URI: https://in-toto.io/attestation/release
+
+Version 0.1
+
+## Purpose
+
+To authoritatively link from a specific release name and version string in a
+package registry, to the artifact names and hashes that make up that release.
+
+## Use Cases
+
+When receiving a new release version, package registries can publish a release
+attestation covering the artifact names and hashes that make up that release.
+This allows consumers of that release version to ensure the artifacts they are
+consuming have not been modified, no matter how many network links or
+intermediate caches were used to acquire the artifact.
+
+If these release attestations are optionally published to a transparency log,
+package authors (or other interested parties) can monitor when a new version of
+a package is released.
+
+The release attestation provides integrity for the release artifacts, but it
+does not provide availability as it does not require the registry to serve an
+attested release artifact that is later determined to be untrustworthy.
+
+These use cases are not hypothetical; both of them are the case today for npm's
+[build provenance feature], which includes a [publish attestation]. Note that
+while npm calls this a publish attestation, calling it a release attestation
+better reflects that it's coming from the package registry. Publishing often
+refers to an author sending content to the registry, as in
+[PyPI's trusted publishers feature].
+
+Perhaps surprisingly, this predicate does not depend on [SLSA Provenance], but
+they are better together. In an ecosystem where some (but not all) packages
+have SLSA Provenance and you query by artifact hash, you can't tell the
+difference between an artifact that has been tampered with and one that does
+not yet have SLSA provenance. If the ecosystem has release attestations, you
+can give authoritative answers to what artifacts make up a given release
+version, and what hashes those artifacts should have.
+
+## Prerequisites
+
+This predicate depends on the [in-toto Attestation Framework], as well as the
+[purl-spec] for identifying packaging ecosystems.
+
+## Model
+
+This predicate is for the final stages of the software supply chain, where
+consumers are looking for attestations that the software has not been tampered
+with during distribution.
+
+If a registry supports immutable releases, there SHOULD be one release
+attestation for a given `predicate.purl`.
+
+Even if the registry does not support immutable releases, the attestation
+subject SHOULD include all the artifacts associated with the release at that
+time; otherwise it will be unclear if an artifact was later removed from a
+release. For example, if a release version has an initial release attestation
+with artifact A, and then later has a release attestation with only artifact B,
+that SHOULD be interpreted as the release version now only containing artifact
+B.
+
+## Schema
+
+```jsonc
+{
+  // Standard attestation fields:
+  "_type": "https://in-toto.io/Statement/v1",
+  "subject": [{ ... }],
+
+  // Predicate:
+  "predicateType": "https://in-toto.io/attestation/release/v0.1",
+  "predicate": {
+    "purl": <ResourceURI>,
+    "releaseId": "..."
+  }
+}
+```
+
+### Fields
+
+**`subject.name`** string
+
+The filename of the artifact as it would appear on disk.
+
+**`predicate.purl`, required** string ([ResourceURI])
+
+A purl uniquely identifying a specific release name and version from a package
+registry.
+
+**`predicate.releaseId`** string
+
+Stable identifier for a release; this should remain unchanged between release
+versions (e.g. it's associated with urllib3, not urllib3 v2.1.0). This will
+allow users to confirm that a release has moved to a new name, and prevent
+confusion if the old name is re-used. This could be an automatically
+incrementing database key, or a UUID that is initially randomly generated and
+then durably associated with the release name.
+
+### Parsing Rules
+
+The purl field MUST be parsed using the [purl-spec]. It MUST include a purl
+`version` (which is OPTIONAL in the [purl-spec]). It SHOULD NOT include purl
+`qualifiers` or `subpath`, unless the `type` requires them to uniquely identify
+a release (as a counter-example `type:oci` would include `qualifiers`).
+
+## Examples
+
+```json
+{
+  "_type": "https://in-toto.io/Statement/v1",
+  "subject": [
+    {
+      "name": "http-7.2.16.tgz",
+      "digest": {
+        "sha256": "4faeb1b2..."
+      }
+    }
+  ],
+  "predicateType": "https://in-toto.io/attestation/release/v0.1",
+  "predicate": {
+    "purl": "pkg:npm/@angular/http@7.2.16",
+    "releaseId": 1234567890
+  }
+}
+```
+
+If a release has multiple artifacts that might be consumed separately, the
+attestation SHOULD have a subject per artifact:
+
+```json
+{
+  "_type": "https://in-toto.io/Statement/v1",
+  "subject": [
+    {
+      "name": "urllib3-2.1.0.tar.gz",
+      "digest": {
+        "sha256": "df7aa8af..."
+      }
+    },
+    {
+      "name": "urllib3-2.1.0-py3-none-any.whl",
+      "digest": {
+        "sha256": "55901e91...",
+      }
+    }
+  ],
+  "predicateType": "https://in-toto.io/attestation/release/v0.1",
+  "predicate": {
+    "purl": "pkg:pypi/urllib3@2.1.0"
+  }
+}
+```
+
+Here's what a release with a container image looks like:
+
+```json
+{
+  "_type": "https://in-toto.io/Statement/v1",
+  "subject": [
+    {
+      "name": "registry.example.com/my-project/my-image",
+      "digest": {
+        "sha256": "fedcba09..."
+      }
+    }
+  ],
+  "predicateType": "https://in-toto.io/attestation/release/v0.1",
+  "predicate": {
+    "purl": "pkg:oci/my-image@sha256%3Afedcba09?repository_url=registry.example.com/my-project/my-image&tag=v1.2.3"
+  }
+}
+```
+
+## Changelog and Migrations
+
+As this is the initial version, no changes or migrations to previous versions.
+The required fields in this specification are a subset of the information
+in the existing npm [publish attestation], so npm could easily migrate to this
+specification.
+
+For example, here is an existing npm publish attestation:
+
+```json
+{
+  "_type": "https://in-toto.io/Statement/v1",
+  "subject": [
+    {
+      "name": "pkg:npm/semver@7.5.4",
+      "digest": {
+        "sha512": "d5b09211..."
+      }
+    }
+  ],
+  "predicateType":
+    "https://github.com/npm/attestation/tree/main/specs/publish/v0.1",
+  "predicate": {
+    "name": "semver",
+    "version": "7.5.4",
+    "registry": "https://registry.npmjs.org"
+  }
+}
+```
+
+And this is what it would look like as a release attestation:
+
+```jsonc
+{
+  "_type": "https://in-toto.io/Statement/v1",
+  "subject": [
+    {
+      // The subject.name value is from the publish attestation subject.name:
+      // take the purl name and version to construct "<name>-<version>.tgz"
+      "name": "semver-7.5.4.tgz",
+      "digest": {
+        "sha512": "d5b09211..."
+      }
+    }
+  ],
+  "predicateType": "https://in-toto.io/attestation/release/v0.1",
+  "predicate": {
+    // The predicate.purl value is from the publish attestation subject.name
+    "purl": "pkg:npm/semver@7.5.4"
+  }
+}
+```
+
+[build provenance feature]:
+https://github.blog/2023-04-19-introducing-npm-package-provenance/
+[publish attestation]:
+https://github.com/npm/attestation/tree/main/specs/publish/v0.1
+[PyPI's trusted publishers feature]: https://docs.pypi.org/trusted-publishers/
+[SLSA Provenance]: https://slsa.dev/provenance
+[in-toto Attestation Framework]: ../README.md
+[purl-spec]: https://github.com/package-url/purl-spec
+[ResourceURI]: ../v1/field_types.md#resourceuri