tuf: warning using deprecated ecdsa hex-encoded keys #143

wlynch · 2022-09-23T21:37:27Z

Description

git verify-commit is outputting a warning:

$ git verify-commit head
tuf: warning using deprecated ecdsa hex-encoded keys
tuf: warning using deprecated ecdsa hex-encoded keys
tuf: warning using deprecated ecdsa hex-encoded keys
tuf: warning using deprecated ecdsa hex-encoded keys
tuf: warning using deprecated ecdsa hex-encoded keys
tuf: warning using deprecated ecdsa hex-encoded keys
tuf: warning using deprecated ecdsa hex-encoded keys
tuf: warning using deprecated ecdsa hex-encoded keys
tuf: warning using deprecated ecdsa hex-encoded keys
tuf: warning using deprecated ecdsa hex-encoded keys
...

A similar bug hit cosign, so we likely need to make a similar change:

https://sigstore.slack.com/archives/C01PZKDL4DP/p1663249878057829
sigstore/cosign#2256

Version

This was introduced in some version > 0.3.0 (probably in a dependabot update to update cosign/rekor)

The text was updated successfully, but these errors were encountered:

cpanato · 2022-09-24T11:11:43Z

this is related sigstore/sigstore#701

will update the dependency

wlynch added the bug Something isn't working label Sep 23, 2022

cpanato mentioned this issue Sep 24, 2022

update sigstore dependencies #144

Merged

wlynch closed this as completed in #144 Sep 26, 2022

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

tuf: warning using deprecated ecdsa hex-encoded keys #143

tuf: warning using deprecated ecdsa hex-encoded keys #143

wlynch commented Sep 23, 2022

cpanato commented Sep 24, 2022

tuf: warning using deprecated ecdsa hex-encoded keys #143

tuf: warning using deprecated ecdsa hex-encoded keys #143

Comments

wlynch commented Sep 23, 2022

cpanato commented Sep 24, 2022