Skip to content

Pull requests: sigstore/cosign

New pull request New
23 Open 3,214 Closed
23 Open 3,214 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

chore(deps): bump the actions group with 3 updates dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
#4345 opened Aug 12, 2025 by dependabot bot Loading…
chore(deps): bump the gomod group with 4 updates dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4343 opened Aug 11, 2025 by dependabot bot Loading…
chore(deps): bump golang.org/x/term from 0.33.0 to 0.34.0 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4342 opened Aug 11, 2025 by dependabot bot Loading…
chore(deps): bump github.com/go-jose/go-jose/v4 from 4.0.5 to 4.1.2 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4341 opened Aug 11, 2025 by dependabot bot Loading…
chore(deps): bump github.com/sigstore/sigstore-go from 1.1.1-0.20250801180901-37e45ae9c250 to 1.1.1 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4340 opened Aug 11, 2025 by dependabot bot Loading…
chore(deps): bump golang.org/x/crypto from 0.40.0 to 0.41.0 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4339 opened Aug 11, 2025 by dependabot bot Loading…
Don't require timestamps when verifying with a key
#4337 opened Aug 11, 2025 by haydentherapper Draft
2
feat: add oci artifact abstraction
#4336 opened Aug 11, 2025 by arewm Draft
1
Default to using the new protobuf format
#4318 opened Jul 31, 2025 by steiza Loading…
5
feat(cli): add --payload-media-type to sign (fixes #4300)
#4304 opened Jul 23, 2025 by arubegonsan Loading…
1
feat(sign): support loading --cert/--cert-chain from URL and env variable
#4260 opened Jun 24, 2025 by ummetcivi Loading…
Return Public key in sign-blob when no certificate can be extracted.
#4224 opened Jun 6, 2025 by tommyd450 Loading…
2
Remove SHA256 assumption in sign-blob/verify-blob
#4050 opened Feb 6, 2025 by ret2libc Loading…
20
add sha256:... as alternative way to specify a blob
#4016 opened Jan 17, 2025 by wolfv Loading…
13
Enable signing and verifying image without registry access
#4014 opened Jan 16, 2025 by bkabrda Loading…
1
2
feat: sign will log entry Id
#3939 opened Nov 21, 2024 by goatwu1993 Loading…
1
Add support for GitLab group variables
#3894 opened Oct 1, 2024 by robertohueso Loading…
3
remove previously deprecated attach/download sbom commands
#3891 opened Sep 27, 2024 by hectorj2f Draft
@hectorj2f
3
Ignore stage names in dockerfile verify
#3881 opened Sep 15, 2024 by slmsbrhgn Loading…
1
1
Fixing issue 3669
#3670 opened Apr 18, 2024 by Mukuls77 Loading…
1
7
Add --signing-algorithm flag
#3497 opened Jan 23, 2024 by ret2libc Draft
7
parse the rekor bundle correctly
#3461 opened Jan 2, 2024 by viveksahu26 Loading…
1
16
Allow cosign save to reuse save directory to help dedupe shared layers.
#3239 opened Sep 13, 2023 by amartin120 Draft
27
ProTip! Mix and match filters to narrow down what you’re looking for.