sigstore/sigstore-python issues and pull requests

#1147 - build(deps): bump rfc8785 from 0.1.3 to 0.1.4

Pull Request - State: closed - Opened by dependabot[bot] 6 days ago - 1 comment
Labels: dependencies, python

#1146 - workflows: publish to TestPyPI periodically

Issue - State: open - Opened by woodruffw 6 days ago
Labels: enhancement, component:cicd, chore

#1145 - workflows/release: enable PEP 740 attestations

Pull Request - State: open - Opened by woodruffw 6 days ago
Labels: component:cicd, chore

#1144 - build(deps): update ruff requirement from <0.6.8 to <0.6.9

Pull Request - State: closed - Opened by dependabot[bot] 7 days ago - 1 comment
Labels: dependencies, python

#1143 - cli: --offline means fully offline

Pull Request - State: closed - Opened by woodruffw 7 days ago - 1 comment
Labels: component:cli, component:verification

#1142 - build(deps): bump the actions group with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 8 days ago - 1 comment
Labels: dependencies, github_actions

#1141 - build(deps): bump github/codeql-action from 3.26.8 to 3.26.9 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 9 days ago - 1 comment
Labels: dependencies, github_actions

#1140 - workflows: various CQA fixes

Pull Request - State: closed - Opened by woodruffw 9 days ago
Labels: component:cicd, chore

#1139 - build(deps): bump pypa/gh-action-pypi-publish from 1.10.1 to 1.10.2 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 10 days ago - 1 comment
Labels: dependencies, github_actions

#1138 - build(deps): update ruff requirement from <0.6.7 to <0.6.8

Pull Request - State: closed - Opened by dependabot[bot] 10 days ago - 1 comment
Labels: dependencies, python

#1137 - Deduplicate test fixtures

Pull Request - State: closed - Opened by facutuesca 10 days ago - 2 comments

#1136 - build(deps): update ruff requirement from <0.6.6 to <0.6.7

Pull Request - State: closed - Opened by dependabot[bot] 13 days ago - 1 comment
Labels: dependencies, python

#1135 - build(deps): bump github/codeql-action from 3.26.7 to 3.26.8 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 14 days ago - 1 comment
Labels: dependencies, github_actions

#1134 - Add CLI integration tests for sign subcommand

Pull Request - State: closed - Opened by facutuesca 15 days ago - 1 comment
Labels: component:tests

#1133 - Update pinned requirements for v3.3.0

Pull Request - State: closed - Opened by github-actions[bot] 15 days ago - 2 comments

#1132 - Externalize API or library for writing/parsing Sigstore bundles

Issue - State: open - Opened by di 15 days ago - 1 comment
Labels: enhancement

#1131 - build(deps): bump peter-evans/create-pull-request from 7.0.3 to 7.0.5 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 15 days ago - 1 comment
Labels: dependencies, github_actions

#1130 - build(deps): bump sigstore from 3.2.0 to 3.3.0

Pull Request - State: closed - Opened by dependabot[bot] 15 days ago - 1 comment
Labels: dependencies, python

#1129 - prep 3.3.0

Pull Request - State: closed - Opened by facutuesca 15 days ago - 2 comments

#1128 - build(deps): bump platformdirs from 4.3.3 to 4.3.6

Pull Request - State: closed - Opened by dependabot[bot] 16 days ago - 2 comments
Labels: dependencies, python

#1127 - build(deps): bump platformdirs from 4.3.2 to 4.3.3

Pull Request - State: closed - Opened by dependabot[bot] 17 days ago - 1 comment
Labels: dependencies, python

#1126 - build(deps): bump peter-evans/create-pull-request from 7.0.2 to 7.0.3 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 17 days ago - 1 comment
Labels: dependencies, github_actions

#1125 - Add support for verifying digests to CLI verify commands

Pull Request - State: closed - Opened by facutuesca 17 days ago - 4 comments

#1124 - Add CLI integration tests for attest subcommand

Pull Request - State: closed - Opened by facutuesca 20 days ago - 1 comment

#1123 - build(deps): update ruff requirement from <0.6.5 to <0.6.6

Pull Request - State: closed - Opened by dependabot[bot] 20 days ago - 1 comment
Labels: dependencies, python

#1122 - build(deps): bump github/codeql-action from 3.26.6 to 3.26.7 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 20 days ago - 1 comment
Labels: dependencies, github_actions

#1121 - Attestation CLI command improvements

Pull Request - State: closed - Opened by facutuesca 20 days ago - 1 comment

#1120 - Add support for Python 3.13

Pull Request - State: closed - Opened by hugovk 20 days ago - 1 comment
Labels: chore

#1119 - build(deps): bump peter-evans/create-pull-request from 7.0.1 to 7.0.2 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 21 days ago - 1 comment
Labels: dependencies, github_actions

#1118 - build(deps): bump pyasn1 from 0.6.0 to 0.6.1

Pull Request - State: closed - Opened by dependabot[bot] 22 days ago - 1 comment
Labels: dependencies, python

#1117 - build(deps): bump rich from 13.8.0 to 13.8.1

Pull Request - State: closed - Opened by dependabot[bot] 23 days ago - 1 comment
Labels: dependencies, python

#1116 - Print in-toto statement when verifying DSSE

Pull Request - State: closed - Opened by facutuesca 23 days ago - 2 comments
Labels: component:cli, component:verification

#1115 - Add `sigstore attest` CLI subcommand to sign using DSSE envelopes

Pull Request - State: closed - Opened by facutuesca 23 days ago - 5 comments

#1114 - build(deps): bump platformdirs from 4.2.2 to 4.3.2

Pull Request - State: closed - Opened by dependabot[bot] 24 days ago - 1 comment
Labels: dependencies, python

#1113 - build(deps): update ruff requirement from <0.6.4 to <0.6.5

Pull Request - State: closed - Opened by dependabot[bot] 28 days ago - 1 comment
Labels: dependencies, python

#1112 - build(deps): bump peter-evans/create-pull-request from 7.0.0 to 7.0.1 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 28 days ago - 1 comment
Labels: dependencies, github_actions

#1111 - CLI: Full DSSE support

Issue - State: closed - Opened by woodruffw 28 days ago - 5 comments
Labels: enhancement

#1110 - Add minimum version to interrogate dependency

Pull Request - State: closed - Opened by facutuesca 28 days ago - 2 comments

#1109 - Add Python 3.12 classifier to pyproject.toml

Pull Request - State: closed - Opened by facutuesca 28 days ago - 1 comment

#1108 - build(deps): bump cryptography from 43.0.0 to 43.0.1

Pull Request - State: closed - Opened by dependabot[bot] 30 days ago - 1 comment
Labels: dependencies, python

#1107 - build(deps): bump the actions group with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 30 days ago - 2 comments
Labels: dependencies, github_actions

#1106 - build(deps): bump the actions group across 1 directory with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, github_actions

#1105 - build(deps): bump actions/upload-artifact from 4.3.6 to 4.4.0 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 3 comments
Labels: dependencies, github_actions

#1104 - build(deps): bump actions/upload-artifact from 4.3.6 to 4.4.0 in /.github/actions/upload-coverage in the actions group

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 6 comments
Labels: dependencies, github_actions

#1103 - build(deps): update ruff requirement from <0.6.3 to <0.6.4

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, python

#1102 - build(deps): bump the actions group with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, github_actions

#1101 - build(deps): bump github/codeql-action from 3.26.4 to 3.26.5 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, github_actions

#1100 - build(deps): bump rich from 13.7.1 to 13.8.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 2 comments
Labels: dependencies, python

#1099 - build(deps): update ruff requirement from <0.6.2 to <0.6.3

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, python

#1098 - build(deps): bump github/codeql-action from 3.26.3 to 3.26.4 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, github_actions

#1097 - build(deps): bump github/codeql-action from 3.26.2 to 3.26.3 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, github_actions

#1096 - Update pinned requirements for v3.2.0

Pull Request - State: closed - Opened by github-actions[bot] about 1 month ago - 2 comments

#1095 - build(deps): bump sigstore from 3.1.0 to 3.2.0

Pull Request - State: closed - Opened by dependabot[bot] about 1 month ago - 1 comment
Labels: dependencies, python

#1094 - prep 3.2.0

Pull Request - State: closed - Opened by woodruffw about 1 month ago
Labels: chore

#1092 - build(deps): update ruff requirement from <0.5.8 to <0.6.1

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, python

#1091 - build(deps): bump github/codeql-action from 3.26.0 to 3.26.2 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, github_actions

#1090 - build(deps): update ruff requirement from <0.5.7 to <0.5.8

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago
Labels: dependencies, python

#1089 - add `fix-bundle` plumbing command

Pull Request - State: closed - Opened by woodruffw about 2 months ago - 2 comments
Labels: component:cli, component:verification, component:api

#1088 - Some 0.1 bundles fail to verify

Issue - State: closed - Opened by woodruffw about 2 months ago - 5 comments
Labels: bug, component:verification

#1087 - [CI] Integration failure: staging instance

Issue - State: closed - Opened by github-actions[bot] about 2 months ago - 1 comment
Labels: bug, component:cicd, component:tests

#1086 - build(deps): bump the actions group with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, github_actions

#1085 - build(deps): bump actions/upload-artifact from 4.3.5 to 4.3.6 in /.github/actions/upload-coverage in the actions group

Pull Request - State: closed - Opened by dependabot[bot] about 2 months ago - 1 comment
Labels: dependencies, github_actions

#1084 - build(deps): update ruff requirement from <0.5.6 to <0.5.7

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, python

#1083 - build(deps): bump actions/upload-artifact from 4.3.4 to 4.3.5 in /.github/actions/upload-coverage in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#1082 - build(deps): bump actions/upload-artifact from 4.3.4 to 4.3.5 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#1081 - build(deps): bump pyjwt from 2.8.0 to 2.9.0

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, python

#1080 - Update pinned requirements for v3.1.0

Pull Request - State: closed - Opened by github-actions[bot] 2 months ago - 2 comments

#1079 - prep 3.1.0

Pull Request - State: closed - Opened by woodruffw 2 months ago
Labels: chore

#1078 - dsse: make constituent types public

Pull Request - State: closed - Opened by woodruffw 2 months ago - 1 comment
Labels: component:api

#1077 - API: make _StatementBuilder public

Pull Request - State: closed - Opened by woodruffw 2 months ago - 1 comment
Labels: component:api

#1076 - Convert in-toto `Statement` to Sigstore DSSE Statement via a single call

Issue - State: closed - Opened by mihaimaruseac 2 months ago - 4 comments
Labels: enhancement

#1075 - build(deps): bump the actions group with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#1074 - build(deps): bump github/codeql-action from 3.25.13 to 3.25.14 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, github_actions

#1073 - build(deps): update ruff requirement from <0.5.5 to <0.5.6

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, python

#1072 - build(deps): bump pyopenssl from 24.1.0 to 24.2.1

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, python

#1071 - build(deps): update ruff requirement from <0.5.4 to <0.5.5

Pull Request - State: closed - Opened by dependabot[bot] 2 months ago - 1 comment
Labels: dependencies, python

#1070 - build(deps): bump the actions group with 2 updates

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

#1069 - build(deps): update ruff requirement from <0.5.3 to <0.5.4

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, python

#1068 - tuf, trust: allow custom TUF base dir

Pull Request - State: closed - Opened by woodruffw 3 months ago - 9 comments
Labels: component:api, component:tuf

#1067 - Allow TUF initialization outside of `$HOME`

Issue - State: closed - Opened by woodruffw 3 months ago
Labels: enhancement, component:api, component:tuf

#1066 - build(deps): bump softprops/action-gh-release from 2.0.6 to 2.0.7 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

#1065 - build(deps): update ruff requirement from <0.5.2 to <0.5.3

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, python

#1064 - build(deps): bump github/codeql-action from 3.25.11 to 3.25.12 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

#1063 - build(deps): bump actions/setup-python from 5.1.0 to 5.1.1 in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

#1062 - sigstore/dsse: reject DSSEs with >1 sig

Pull Request - State: closed - Opened by woodruffw 3 months ago
Labels: component:verification

#1061 - build(deps): bump zipp from 3.18.2 to 3.19.1 in /install

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, python

#1060 - models: add type annotation

Pull Request - State: closed - Opened by woodruffw 3 months ago
Labels: chore

#1059 - build(deps): bump certifi from 2024.2.2 to 2024.7.4 in /install

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, python

#1058 - build(deps): bump actions/upload-artifact from 4.3.3 to 4.3.4 in /.github/actions/upload-coverage in the actions group

Pull Request - State: closed - Opened by dependabot[bot] 3 months ago - 1 comment
Labels: dependencies, github_actions

GitHub / sigstore/sigstore-python issues and pull requests