WIP: remove 'if', assertions, replace with if-arch #1449
Chainguard Enforce / Enforce - Commit Signing
succeeded
Aug 21, 2024 in 1s
Successfully verified commit signature.
| CLAIM | DESCRIPTION | |
|---|---|---|
| ✅ | Found Git signature | |
| ✅ | Validated Git signature | |
| ✅ | Validated Rekor entry | |
| ✅ | Allowed by policy |
Details
Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 697131854505184665059556561131682025277876751338 (0x7a1c7937df6e16fd8606776b23550f4f587a4bea)
Signature Algorithm: ECDSA-SHA384
Issuer: O=sigstore.dev,CN=sigstore-intermediate
Validity
Not Before: Aug 21 22:26:34 2024 UTC
Not After : Aug 21 22:36:34 2024 UTC
Subject: Subject Public Key Info:
Public Key Algorithm: ECDSA
Public-Key: (256 bit)
X:
07:ac:f4:d9:26:44:0a:dd:5c:27:4d:51:31:d7:dc:
e6:44:5c:a9:9e:6b:11:79:16:99:51:42:36:28:01:
00:fa
Y:
8b:4b:03:f9:e2:f6:b3:cb:ef:c4:f0:87:42:03:2c:
04:06:01:19:a9:70:00:88:2e:6e:2f:f7:c9:1c:54:
a9:30
Curve: P-256
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
Code Signing
X509v3 Subject Key Identifier:
36:32:3B:23:E0:2A:5B:EE:FF:83:CC:93:B7:0F:4E:A2:1E:AC:10:80
X509v3 Authority Key Identifier:
keyid:DF:D3:E9:CF:56:24:11:96:F9:A8:D8:E9:28:55:A2:C6:2E:18:64:3F
X509v3 Subject Alternative Name: critical
email:jason@chainguard.dev
oidcIssuer:
https://accounts.google.com
Unknown extension 1.3.6.1.4.1.57264.1.8
Signed Certificate Timestamp:
BHkAdwB1AN09MGrGxxEyYxkeHJlnNwKiSl643jyt/4eKcoAvKe6OAAABkXcMg6MAAAQDAEYwRAIgf8F58muoqV45bEF8cZSO8L0iSzByHqIOkzIYauwEdsQCIF44/vrVpTlLJC9FZ9tTWrHrQx/hQ4wSaP7NHdeTLplt
Signature Algorithm: ECDSA-SHA384
30:65:02:30:75:ce:b0:ab:c2:50:7b:6f:07:7d:97:12:51:4e:
73:fb:74:91:bb:45:2d:42:a8:6e:a9:9c:6f:fa:f6:57:dd:01:
ca:63:a4:89:b5:67:40:0e:37:8b:89:28:0c:7c:42:4f:02:31:
00:8c:31:66:33:17:15:0c:0a:2b:db:c1:23:ff:4f:10:a1:6e:
1c:42:3a:2c:6f:35:72:a7:d3:da:d0:b3:87:b4:bd:24:9e:dc:
7d:80:97:b6:10:26:9e:51:d6:82:67:c7:67
Rekor Entry
{
"body": "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",
"integratedTime": 1724279194,
"logID": "c0d23d6ad406973f9559f3ba2d1ca01f84147d8ffc5b8445c224f98b9591801d",
"logIndex": 123661661,
"verification": {
"inclusionProof": {
"checkpoint": "rekor.sigstore.dev - 1193050959916656506\n1757421\nB0BBByE4XzpYhMSkp1RBUPI9NuM1G7Cn2IvgsNdbEm4=\n\n— rekor.sigstore.dev wNI9ajBGAiEArsc57oIu/QqH/sxd2TLwk73Fzu8qSoQkGBNoXJ6FjV0CIQCRhiUC2cKCDU3XZH7krVzr6HjAhrATRUHtYOd9vCS3wQ==\n",
"hashes": [
"1d0d4dc4e1f6793ea5f67484969caf6e2e47cab1d400b218628759047ae3db58",
"0a223b7a964561d2167692c70de3561bd31b15f6dba6f0ec66f607c0f2b86dc5",
"9537807c96a5bb9b0ff7e49a6c8e15cde3d697cf48ddd19bfdd496df11a5f834",
"5810cf99accc037fe7f8ad7f83836abd443ff8bcbb8c0928c6d2131a7062aa97",
"8ee2c6b05e177ad5d39b8e605be00db6497703a1854e499ecb607ec641985cae",
"6f0bb890aeae58ab445caf28cf2ca3fbe2032a5755a1de3e1c72db05b3c6836b",
"40abb28006b367ac4df63e518b4a0af6b7880f3ecdd559c2027303ee6b23daac",
"37ba7e6e3705bf62dc99331e910044e9fa085545de29931afd1223b7c5d4d021",
"4223566f0e9eb89ae7fae4ae0a6fd9d7b0038bfecfd4c265ceff1db14861137e",
"6ac3b07e8cd1dd00678f85a906389d1e5e4dd5c154927aa0508b214e41c7a58d",
"ed91fd10c93cbd265575f47997a51b78c3c2a6ee3ef4d1f1e40034d02026e9d7",
"b949a3931e4faef9985e31563ff7d90b1a856cd8f0df87c078637f63325cded8",
"6feabdcab15534086d552778e47363b388f8954af283a37f6884a682bda4f471",
"1cbb744c909597ce55b95b9419eb0ad034de5a58c3bec6ca3cb22c07618db7e7"
],
"logIndex": 1757399,
"rootHash": "0740410721385f3a5884c4a4a7544150f23d36e3351bb0a7d88be0b0d75b126e",
"treeSize": 1757421
},
"signedEntryTimestamp": "MEUCIQC54r+Q+WMjm4HQ1zbY3yjenhcZNfAZpGlSFb8u8nOmOgIgHdHkK6CTHyhJrQSw/Gfuf1I/kM6o/QT9CKGbmr2Xdz0="
}
}
Loading