New project root-signing-staging #345
Comments
jku
added a commit
to jku/community
that referenced
this issue
Oct 11, 2023
* tuf-root-signing-staging-codeowners is for maintainers of planned root-signing-staging repository (see sigstore#345) * New user jku as well as kommendorkapten are added to the new team * The repository is not defined yet as I understood the team needs to exist before it can have an id which is required to define the repository Fixes sigstore#347. Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>
jku
added a commit
to jku/community
that referenced
this issue
Oct 12, 2023
* tuf-root-signing-staging-codeowners is for maintainers of planned root-signing-staging repository (see sigstore#345) * New user jku as well as kommendorkapten and haydentherapper are added to the new team * The repository is not defined yet as I understood the team needs to exist before it can have an id which is required to define the repository Fixes sigstore#347. Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>
|
My plan was to enable GitHub Pages publishing from Actions for the the new project (that may later be replaced by GCS publishing). However, it looks like pulumi is not capable of enabling Pages publishing from Actions. So I maye have to either workaround that (somehow?) or go straight to GCS publishing |
jku
added a commit
to jku/community
that referenced
this issue
Oct 12, 2023
Fixes sigstore#345 (although further tweaks will almost certainly be required). This does not include a team id for the tuf-root-signing-staging-codeowners team but the code in github-sync seems prepared for that possibility... Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>
|
We can also just make you an admin on the project so you can manually enable it. |
bobcallaway
pushed a commit
that referenced
this issue
Oct 17, 2023
* tuf-root-signing-staging-codeowners is for maintainers of planned root-signing-staging repository (see #345) * New user jku as well as kommendorkapten and haydentherapper are added to the new team * The repository is not defined yet as I understood the team needs to exist before it can have an id which is required to define the repository Fixes #347. Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>
jku
added a commit
to jku/community
that referenced
this issue
Oct 17, 2023
Fixes sigstore#345 (although further tweaks may be required: we'll see how the bot permissions match what tuf-on-ci expects, and what is needed to configure Pages publishing from GH actions). Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>
priyawadhwa
pushed a commit
that referenced
this issue
Oct 25, 2023
Fixes #345 (although further tweaks may be required: we'll see how the bot permissions match what tuf-on-ci expects, and what is needed to configure Pages publishing from GH actions). Signed-off-by: Jussi Kukkonen <jkukkonen@google.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
As documented in sigstore/root-signing#929 I'd like to start maintaining the staging TUF repository for root-signing with the TUF-on-CI tool. The reasons are
Currently the "staging TUF repo" is just static files within root-signing git -- a setup that doesn't really resemble production very much. The plan is to actually maintain the staging repository act more like the production one (with some changes like lower signature thresholds to keep maintenance manageable).
I plan to open some PRs to this repo and link to this issue (as I figure out Pulumi etc), but high level plan is this:
cc @haydentherapper
The text was updated successfully, but these errors were encountered: