You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Description
This is continuation of the work started in #3462 but with cosign sign instead of cosign verify. All the rationale applies - the goal is to allow to run cosign sign with the multiple roots of trust in a single certificate bundle file, passed through the new --ca-roots flag (as well as the optional intermediates - with the --ca-intermediates).
The second goal is to extend the exposed Go data structures to allow the clients using sigstore/cosign as a Go library to perform the signing while passing the "roots of trust" certificate bundle file. I suggest to add new fields, CARoots and CAIntermediates to the SignOptions after Cert and CertChain:
Description
This is continuation of the work started in #3462 but with
cosign sign
instead ofcosign verify
. All the rationale applies - the goal is to allow to runcosign sign
with the multiple roots of trust in a single certificate bundle file, passed through the new--ca-roots
flag (as well as the optional intermediates - with the--ca-intermediates
).The second goal is to extend the exposed Go data structures to allow the clients using
sigstore/cosign
as a Go library to perform the signing while passing the "roots of trust" certificate bundle file. I suggest to add new fields,CARoots
andCAIntermediates
to the SignOptions afterCert
andCertChain
:The text was updated successfully, but these errors were encountered: