options

package
v2.6.0 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jul 11, 2024 License: Apache-2.0 Imports: 3 Imported by: 0

Documentation

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func ExperimentalEnabled added in v2.1.0 

func ExperimentalEnabled() bool

ExperimentalEnabled returns true if experimental features are currently enabled.

func TestingEnabled added in v2.2.0 

func TestingEnabled() bool

TestingEnabled returns true if the SLSA_VERIFIER_TESTING environment variable is set.

Types

type BuilderOpts 

type BuilderOpts struct {
	// ExpectedBuilderID is the builderID passed in from the user.
	ExpectedID *string
}

BuildOpts are the options for checking the builder.

type ProvenanceOpts 

type ProvenanceOpts struct {
	// ExpectedBranch is the expected branch (github_ref or github_base_ref) in
	// the invocation parameters.
	ExpectedBranch *string

	// ExpectedTag is the expected tag, github_ref, in the invocation parameters.
	ExpectedTag *string

	// ExpectedVersionedTag is the expected versioned tag.
	ExpectedVersionedTag *string

	// ExpectedDigest is the expected artifact sha included in the provenance.
	ExpectedDigest string

	// ExpectedSourceURI is the expected source URI in the provenance.
	ExpectedSourceURI string

	// ExpectedBuilderID is the expected builder ID that is passed from user and verified
	ExpectedBuilderID string

	// ExpectedWorkflowInputs is a map of key=value inputs.
	ExpectedWorkflowInputs map[string]string

	ExpectedPackageName *string

	ExpectedPackageVersion *string

	// ExpectedProvenanceRepository is the provenance repository that is passed from user.
	ExpectedProvenanceRepository *string
}

ProvenanceOpts are the options for checking provenance information.

type VSAOpts added in v2.6.0 

type VSAOpts struct {
	// ExpectedDigests are the digests expected to be in the VSA.
	ExpectedDigests *[]string

	// ExpectedVerifierID is the verifier ID that is passed from user.
	ExpectedVerifierID *string

	// ExpectedResourceURI is the resource URI that is passed from user.
	ExpectedResourceURI *string

	// ExpectedVerifiedLevels is the levels of verification that are passed from user.
	ExpectedVerifiedLevels *[]string
}

VSAOpts are the options for checking the VSA.

type VerificationOpts added in v2.6.0 

type VerificationOpts struct {
	// PublicKey is the public key used to verify the signature on the Envelope.
	PublicKey crypto.PublicKey

	// PublicKeyID is the ID of the public key.
	PublicKeyID *string

	// PublicKeyHashAlgo is the hash algorithm used to compute digest that was signed.
	PublicKeyHashAlgo crypto.Hash
}

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.