Skip to content
This repository has been archived by the owner on Apr 4, 2024. It is now read-only.

update golang.org/x/crypto for security #212

Merged
merged 1 commit into from
Dec 19, 2023

update golang.org/x/crypto for security

abd8bb4
Select commit
Loading
Failed to load commit list.
Merged

update golang.org/x/crypto for security #212

update golang.org/x/crypto for security
abd8bb4
Select commit
Loading
Failed to load commit list.
Chainguard + GitHub (staging) / Enforce - Commit Signing succeeded Dec 19, 2023 in 0s

Successfully verified commit signature.

CLAIM DESCRIPTION
Found Git signature
Validated Git signature
Validated Rekor entry
Allowed by policy

Details

Certificate

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 191605990812697989171350711012634115172948501666 (0x218fe8e775c810f2fc5a1e53b62b18e15b57e4a2)
    Signature Algorithm: ECDSA-SHA384
        Issuer: O=sigstore.dev,CN=sigstore-intermediate
        Validity
            Not Before: Dec 19 17:29:40 2023 UTC
            Not After : Dec 19 17:39:40 2023 UTC
        Subject:         Subject Public Key Info:
            Public Key Algorithm: ECDSA
                Public-Key: (256 bit)
                X:
                    38:89:36:4e:49:ff:f9:b0:26:16:c2:d7:cf:eb:28:
                    01:a1:be:ea:cb:1d:67:49:70:cd:90:9d:f3:ab:67:
                    bc:9a
                Y:
                    79:2f:9a:ec:f0:c0:4f:f0:c7:d1:e5:ae:4a:e8:e8:
                    60:1b:5c:55:ca:3d:65:2b:8d:44:38:5e:db:32:9e:
                    09:6b
                Curve: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage:
                Code Signing
            X509v3 Subject Key Identifier:
                9D:30:08:B7:8E:68:CB:FA:6A:2C:F0:CD:E1:59:21:C8:C7:EB:5F:0F
            X509v3 Authority Key Identifier:
                keyid:DF:D3:E9:CF:56:24:11:96:F9:A8:D8:E9:28:55:A2:C6:2E:18:64:3F
            X509v3 Subject Alternative Name: critical
                email:kleung@chainguard.dev
            oidcIssuer:
                https://accounts.google.com
            Unknown extension 1.3.6.1.4.1.57264.1.8
            Signed Certificate Timestamp:
                BHsAeQB3AN09MGrGxxEyYxkeHJlnNwKiSl643jyt/4eKcoAvKe6OAAABjIMgS3UAAAQDAEgwRgIhALBEv3NXiNRFAaLXEPRa8WY6RiXnaGvKpeyMGNfmPlHXAiEAigqUeJyZFddNN4Gk+Na1SrdsdETL2kqJA6rFinz2GrM=

    Signature Algorithm: ECDSA-SHA384
         30:65:02:31:00:ae:a0:ba:5f:38:43:9d:d6:29:f6:e0:1a:f2:
         d4:d6:52:58:90:37:24:9c:95:c6:44:d9:98:9a:23:a2:a2:af:
         2a:de:28:f1:f1:b0:75:a1:87:4b:52:b2:3d:b2:76:d2:61:02:
         30:63:62:3c:9c:a8:dd:90:3a:24:8a:1a:e6:f3:3c:ab:08:a1:
         0d:24:ec:a4:80:0a:e9:97:c3:f1:bf:34:bd:fd:cb:c4:e7:bf:
         f3:a6:38:dc:0e:c5:b0:95:10:77:47:de:f5

Rekor Entry

{
  "body": "eyJhcGlWZXJzaW9uIjoiMC4wLjEiLCJraW5kIjoiaGFzaGVkcmVrb3JkIiwic3BlYyI6eyJkYXRhIjp7Imhhc2giOnsiYWxnb3JpdGhtIjoic2hhMjU2IiwidmFsdWUiOiIwOThmZTMzYmQ4NWY0YzdiZDFiMWFhYmMwNTQ0OTQzNTlkMDg4NzBiOTc0ZDMwODJmMzIxOGI0NDFmZWQ4MzVhIn19LCJzaWduYXR1cmUiOnsiY29udGVudCI6Ik1FWUNJUUNHY3M1eGVLY2lpa3BqSmxVYVNqVmRmb2hZb2YreHNXSHl0ZnlpeU5Cend3SWhBTGdHZjdCelViVmxLNjR3MFV1SnB5b3pLc2RFK0xFNXY1TUZMS1VHSWRQQiIsInB1YmxpY0tleSI6eyJjb250ZW50IjoiTFMwdExTMUNSVWRKVGlCRFJWSlVTVVpKUTBGVVJTMHRMUzB0Q2sxSlNVTjZla05EUVd4WFowRjNTVUpCWjBsVlNWa3ZielV6V0VsRlVFdzRWMmcxVkhScGMxazBWblJZTlV0SmQwTm5XVWxMYjFwSmVtb3dSVUYzVFhjS1RucEZWazFDVFVkQk1WVkZRMmhOVFdNeWJHNWpNMUoyWTIxVmRWcEhWakpOVWpSM1NFRlpSRlpSVVVSRmVGWjZZVmRrZW1SSE9YbGFVekZ3WW01U2JBcGpiVEZzV2tkc2FHUkhWWGRJYUdOT1RXcE5lRTFxUlRWTlZHTjVUMVJSZDFkb1kwNU5hazE0VFdwRk5VMVVZM3BQVkZGM1YycEJRVTFHYTNkRmQxbElDa3R2V2tsNmFqQkRRVkZaU1V0dldrbDZhakJFUVZGalJGRm5RVVZQU1dzeVZHdHVMeXRpUVcxR2MweFllaXR6YjBGaFJ5czJjM05rV2pCc2QzcGFRMlFLT0RaMGJuWktjRFZNTlhKek9FMUNVRGhOWmxJMVlUVkxOazlvWjBjeGVGWjVhakZzU3pReFJVOUdOMkpOY0RSS1lUWlBRMEZZVVhkblowWjNUVUUwUndwQk1WVmtSSGRGUWk5M1VVVkJkMGxJWjBSQlZFSm5UbFpJVTFWRlJFUkJTMEpuWjNKQ1owVkdRbEZqUkVGNlFXUkNaMDVXU0ZFMFJVWm5VVlZ1VkVGSkNuUTBOVzk1TDNCeFRGQkVUalJXYTJoNVRXWnlXSGM0ZDBoM1dVUldVakJxUWtKbmQwWnZRVlV6T1ZCd2VqRlphMFZhWWpWeFRtcHdTMFpYYVhocE5Ga0tXa1E0ZDBsM1dVUldVakJTUVZGSUwwSkNhM2RHTkVWV1lUSjRiR1JYTlc1UlIwNXZXVmRzZFZvelZtaGpiVkYxV2tkV01rMURhMGREYVhOSFFWRlJRZ3BuTnpoM1FWRkZSVWN5YURCa1NFSjZUMms0ZGxsWFRtcGlNMVoxWkVoTmRWb3lPWFphTW5oc1RHMU9kbUpVUVhKQ1oyOXlRbWRGUlVGWlR5OU5RVVZKQ2tKQ01FMUhNbWd3WkVoQ2VrOXBPSFpaVjA1cVlqTldkV1JJVFhWYU1qbDJXako0YkV4dFRuWmlWRU5DYVhkWlMwdDNXVUpDUVVoWFpWRkpSVUZuVWprS1FraHpRV1ZSUWpOQlRqQTVUVWR5UjNoNFJYbFplR3RsU0Vwc2JrNTNTMmxUYkRZME0ycDVkQzgwWlV0amIwRjJTMlUyVDBGQlFVSnFTVTFuVXpOVlFRcEJRVkZFUVVWbmQxSm5TV2hCVEVKRmRqTk9XR2xPVWtaQllVeFlSVkJTWVRoWFdUWlNhVmh1WVVkMlMzQmxlVTFIVG1adFVHeElXRUZwUlVGcFozRlZDbVZLZVZwR1pHUk9UalJIYXl0T1lURlRjbVJ6WkVWVVRESnJjVXBCTm5KR2FXNTZNa2R5VFhkRFoxbEpTMjlhU1hwcU1FVkJkMDFFWVVGQmQxcFJTWGdLUVVzMlozVnNPRFJSTlROWFMyWmlaMGQyVEZVeGJFcFphMFJqYTI1S1dFZFNUbTFaYldsUGFXOXhPSEV6YVdwNE9HSkNNVzlaWkV4VmNrazVjMjVpVXdwWlVVbDNXVEpKT0c1TGFtUnJSRzlyYVdoeWJUaDZlWEpEUzBWT1NrOTVhMmRCY25Cc09GQjRkbnBUT1M5amRrVTFOeTk2Y0dwcVkwUnpWM2RzVWtJekNsSTVOekVLTFMwdExTMUZUa1FnUTBWU1ZFbEdTVU5CVkVVdExTMHRMUW89In19fX0=",
  "integratedTime": 1703006981,
  "logID": "c0d23d6ad406973f9559f3ba2d1ca01f84147d8ffc5b8445c224f98b9591801d",
  "logIndex": 58009541,
  "verification": {
    "inclusionProof": {
      "checkpoint": "rekor.sigstore.dev - 2605736670972794746\n53853365\nfY+Ayn8JbNuHBKCBi60r5nM1r9G9Rg23OfMThd8SA3c=\nTimestamp: 1703009681700028269\n\n— rekor.sigstore.dev wNI9ajBFAiACQzi+oevDJwAU+eSLh3dxWwdROIjLx8v3dQqVjOwa3wIhAKf+hS7Mm9anBnGVQkLvd6vZmyeMXi0VRegq6WTGcWwe\n",
      "hashes": [
        "b9ca5ce9f19b5322ff858a7151900f98610ededb3a4b327d8f6905d435ad7129",
        "2e50ee77e2cac34a00dfadec9925281b9d2e6948c9317ce1300c030e3a2032a4",
        "578ed6e556e003e94ed24f4501ed4d54a2f24639df83903e700da104cd5696f2",
        "683e1485542e9b069eb3d05d0dad0f4269c77fae5c796175c47d6088ff582373",
        "f2730d8062d1b513d7de8cf9adf982b7017c81e47c762ce09960f10823a6562e",
        "5dafd70926cae583fbb60db7bcd3f829e45e88d1a5962c9e1acd06d06284fb71",
        "495a436d57623d7b2719125d1b3d32f4c424cc2f84939e758bfb28091dbd021a",
        "bb235740ddbdbec83678fdf20b3109a03fad1f2122128806cc9492d131f3ba2f",
        "45dcbeab793767b12ac26c81f811ac5a4ef90cd2a82507bbf5602666251ec67e",
        "0567148174cdbe792185bfeae5590d19b3b4c9f6098bfc87cf69d8455381cf28",
        "c6b43368d72c4e062cee9f443fe2e89016f5ef335ebff1872e10eb3ae529a907",
        "5a6e998ed0d3b3c63d29fcdbaa6111bef4baeda65e0c65aadc6d0ba7121f6524",
        "3a34a65a1261d7dec6b804339f7229ad6529e043ec4b93fe297aac618d3e3315",
        "ab1af5c2acb39a3a8020796e99d0a17c15b5cc319c17d050a6da7194c6cae2af",
        "df34acb82c43947bb189695442dfafa71e5c49437cf935437fd888bff28427c3",
        "0603c1b49531e3785acc89111ca64f4031c1db8ecff526044a2f1758c1b1c5d0",
        "fc1c3c87d7fc7f42c669659e7b7a554cd85c3d49566506a27ca7fc7db74aadcd",
        "af8275b41b97f815c42d517b97923bafe16d4aaa7513b96db92fddbc3a541459",
        "b3e1cfe5051b20c094f481c26781ffd3a3e66511439f6c5f064237a972899100",
        "98c486feb5d87092a78a46c4b5be04868654900affc2e86ffb20074dc73a883a",
        "6969c49bd73f19bf28a5eaeabd331ddd60502defb2cd3d96e17b741c80adec6c"
      ],
      "logIndex": 53846110,
      "rootHash": "7d8f80ca7f096cdb8704a0818bad2be67335afd1bd460db739f31385df120377",
      "treeSize": 53853365
    },
    "signedEntryTimestamp": "MEUCIQDfzMHlbDLcVyLZzCi0RU8bKGQTbMLVZHUHowo2EDYzqwIgJk1K/dykeldTjBKgNHaD/VeALYlzLeQRxQvOOmYAtO8="
  }
}
View more details on Chainguard + GitHub (staging)