Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Doc: explaining how to verify provenance #1331

Merged
merged 2 commits into from
Jan 13, 2025
Merged

Doc: explaining how to verify provenance #1331

merged 2 commits into from
Jan 13, 2025

Conversation

Lucas-C
Copy link
Member

@Lucas-C Lucas-C commented Dec 16, 2024
edited
Loading

Note: part of the changes originally embedded in this PR were moved to another dedicated PR: #1332

Docs preview

image

By submitting this pull request, I confirm that my contribution is made under the terms of the GNU LGPL 3.0 license.

@Lucas-C Lucas-C requested a review from gmischler as a code owner December 16, 2024 11:33
@Lucas-C Lucas-C mentioned this pull request Dec 16, 2024
Closed
@Lucas-C Lucas-C marked this pull request as draft December 16, 2024 11:39
@Lucas-C Lucas-C changed the title Draft: CI: enabling upload of sigstore signing artifacts & auto-verify CI: enabling upload of sigstore signing artifacts & auto-verify Dec 16, 2024
@Lucas-C Lucas-C force-pushed the sigstore-upload-signing-artifacts-and-verify branch from 445e714 to 7d5531a Compare December 16, 2024 18:41
@Lucas-C Lucas-C changed the title CI: enabling upload of sigstore signing artifacts & auto-verify Doc: explaining how to verify provenance + introducing guarddog in CI Dec 16, 2024
@Lucas-C Lucas-C changed the title Doc: explaining how to verify provenance + introducing guarddog in CI Doc: explaining how to verify provenance + introducing guarddog in CI + harden CI runner Dec 16, 2024
@Lucas-C Lucas-C force-pushed the sigstore-upload-signing-artifacts-and-verify branch 6 times, most recently from 3e60193 to 6de5c0c Compare December 16, 2024 19:00
@Lucas-C Lucas-C changed the title Doc: explaining how to verify provenance + introducing guarddog in CI + harden CI runner Doc: explaining how to verify provenance + introducing guarddog in CI + hardening CI runner Dec 16, 2024
@Lucas-C Lucas-C force-pushed the sigstore-upload-signing-artifacts-and-verify branch 13 times, most recently from 772390a to 6bbc155 Compare December 16, 2024 20:10
@Lucas-C Lucas-C mentioned this pull request Dec 18, 2024
Merged
@Lucas-C Lucas-C changed the title Doc: explaining how to verify provenance + introducing guarddog in CI + hardening CI runner Doc: explaining how to verify provenance Dec 18, 2024
@Lucas-C Lucas-C force-pushed the sigstore-upload-signing-artifacts-and-verify branch from 6bbc155 to c12b064 Compare December 18, 2024 08:13
@Lucas-C Lucas-C force-pushed the sigstore-upload-signing-artifacts-and-verify branch 2 times, most recently from 115a519 to 6ba975d Compare December 18, 2024 08:45
@Lucas-C Lucas-C force-pushed the sigstore-upload-signing-artifacts-and-verify branch from 6ba975d to b49849d Compare December 18, 2024 08:56
@Lucas-C Lucas-C marked this pull request as ready for review January 13, 2025 14:55
@Lucas-C Lucas-C merged commit cdf981f into master Jan 13, 2025
18 checks passed
@Lucas-C Lucas-C deleted the sigstore-upload-signing-artifacts-and-verify branch January 13, 2025 17:38
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gmischler gmischler Awaiting requested review from gmischler gmischler is a code owner

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@Lucas-C