oci

package

Go to main page

Versions in this module

v1

v1.13.6

Mar 21, 2024 GO-2023-2181 +2 more

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.13.5

Mar 21, 2024 GO-2023-2181 +2 more

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.13.4

Mar 21, 2024 GO-2023-2181 +2 more

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.13.3

Mar 21, 2024 GO-2023-2181 +2 more

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.13.2

Nov 15, 2023 GO-2023-2181 +2 more

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.13.1

Oct 17, 2022 GO-2023-2181 +2 more

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.13.0

Oct 7, 2022 GO-2023-2181 +2 more

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.12.1

Sep 20, 2022 GO-2023-2181 +2 more

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.12.0

Sep 14, 2022 GO-2023-2181 +2 more

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.11.1

Aug 24, 2022 GO-2022-0998 +3 more

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.11.0

Aug 18, 2022 GO-2022-0998 +3 more

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.10.1

Aug 4, 2022 GO-2022-0998 +3 more

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.10.0

Jul 22, 2022 GO-2022-0758 +4 more

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.10.0-rc.1

Jul 22, 2022 GO-2022-0758 +4 more

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.9.0

Jun 3, 2022 GO-2022-0758 +4 more

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.8.0

Apr 27, 2022 GO-2022-0758 +4 more

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.7.2

Apr 12, 2022 GO-2022-0758 +4 more

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.7.1

Apr 5, 2022 GO-2022-0758 +4 more

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.7.0

Apr 4, 2022 GO-2022-0758 +4 more

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.6.0

Mar 3, 2022 GO-2022-0758 +4 more

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.5.2

Feb 18, 2022 GO-2022-0758 +4 more

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.5.1

Jan 30, 2022 GO-2022-0326 +5 more

GO-2022-0326: Improper certificate validation in github.com/sigstore/cosign

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.5.0

Jan 21, 2022 GO-2022-0326 +5 more

GO-2022-0326: Improper certificate validation in github.com/sigstore/cosign

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

Changes in this version

type Signature

+ Timestamp func() (*tuf.Timestamp, error)

v1.4.1

Dec 10, 2021 GO-2022-0326 +5 more

GO-2022-0326: Improper certificate validation in github.com/sigstore/cosign

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.4.0

Dec 6, 2021 GO-2022-0326 +5 more

GO-2022-0326: Improper certificate validation in github.com/sigstore/cosign

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.3.1

Nov 11, 2021 GO-2022-0326 +5 more

GO-2022-0326: Improper certificate validation in github.com/sigstore/cosign

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

v1.3.0

Nov 3, 2021 GO-2022-0326 +5 more

GO-2022-0326: Improper certificate validation in github.com/sigstore/cosign

GO-2022-0758: Improper verification of signature attestations in github.com/sigstore/cosign

GO-2022-0998: Improper blob verification in github.com/sigstore/cosign

GO-2023-2181: Denial of service attack from remote registry in github.com/sigstore/cosign

GO-2024-2718: Cosign malicious attachments can cause system-wide denial of service in github.com/sigstore/cosign

GO-2024-2719: Cosign malicious artifacts can cause machine-wide DoS in github.com/sigstore/cosign

Changes in this version

+ const DockerMediaTypesEnv

+ func DockerMediaTypes() bool

+ type Bundle struct

+ Payload BundlePayload

+ SignedEntryTimestamp strfmt.Base64

+ type BundlePayload struct

+ Body interface{}

+ IntegratedTime int64

+ LogID string

+ LogIndex int64

+ type File interface

+ FileMediaType func() (types.MediaType, error)

+ Payload func() ([]byte, error)

+ type Signature interface

+ Annotations func() (map[string]string, error)

+ Base64Signature func() (string, error)

+ Bundle func() (*Bundle, error)

+ Cert func() (*x509.Certificate, error)

+ Chain func() ([]*x509.Certificate, error)

+ Payload func() ([]byte, error)

+ type Signatures interface

+ Get func() ([]Signature, error)

+ type SignedEntity interface

+ Attachment func(name string) (File, error)

+ Attestations func() (Signatures, error)

+ Signatures func() (Signatures, error)

+ type SignedImage interface

+ type SignedImageIndex interface

+ SignedImage func(v1.Hash) (SignedImage, error)

+ SignedImageIndex func(v1.Hash) (SignedImageIndex, error)

Other modules containing this package

github.com/sigstore/cosign/v2

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL