Affected by GO-2024-2718 and 1 other vulnerabilities

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

The highest tagged major version is v2.

attest

package

v1.12.0 Latest Latest Go to latest Published: Sep 14, 2022 License: Apache-2.0 Imports: 24 Imported by: 1

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/sigstore/cosign

Links

Open Source Insights

Documentation ¶

Index ¶

func AttestCmd(ctx context.Context, ko options.KeyOpts, regOpts options.RegistryOptions, ...) error

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func AttestCmd ¶

func AttestCmd(ctx context.Context, ko options.KeyOpts, regOpts options.RegistryOptions, imageRef string, certPath string, certChainPath string,
	noUpload bool, predicatePath string, force bool, predicateType string, replace bool, timeout time.Duration, noTlogUpload bool) error

nolint

Types ¶

This section is empty.

Source Files ¶

View all Source files

attest.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL