Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Allow users to override the trust root with --trusted-root #779

Closed
woodruffw opened this issue Sep 27, 2023 · 1 comment
Closed

Allow users to override the trust root with --trusted-root #779

woodruffw opened this issue Sep 27, 2023 · 1 comment
Labels
component:cli CLI components enhancement New feature or request

Comments

@woodruffw
Copy link
Member

As in sigstore-go: --trusted-root FILE will override the default trust root discovery via TUF, allowing a user to substitute their own trust root (potentially for an internal Sigstore deployment, or for testing, etc.).

This will unify the current rats nest of flags for configuring custom Sigstore behavior: we'll be able to deprecate and eventually remove --rekor-url, --rekor-root-pubkey, --fulcio-url, --ctfe, and possibly some others. This in turn will allow us to close #324.

xrefs:
@woodruffw woodruffw added enhancement New feature or request component:cli CLI components labels Sep 27, 2023
@woodruffw woodruffw mentioned this issue Dec 6, 2023
Open
@woodruffw
Copy link
Member Author

Closing in favor of #821: this is now a semi-urgent action item, since the conformance suite needs this flag to (fully) pass.

@woodruffw woodruffw mentioned this issue Jan 9, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
component:cli CLI components enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@woodruffw