Skip to content

Pull requests: sigstore/cosign

New pull request New
21 Open 3,329 Closed
21 Open 3,329 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

chore(deps): bump golang.org/x/crypto from 0.42.0 to 0.43.0 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4486 opened Oct 20, 2025 by dependabot bot Loading…
chore(deps): bump github.com/sigstore/rekor-tiles/v2 from 2.0.0-rc2 to 2.0.0 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4485 opened Oct 20, 2025 by dependabot bot Loading…
chore(deps): bump gitlab.com/gitlab-org/api/client-go from 0.154.0 to 0.157.0 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4484 opened Oct 20, 2025 by dependabot bot Loading…
chore(deps): bump github.com/buildkite/agent/v3 from 3.108.0 to 3.109.1 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4483 opened Oct 20, 2025 by dependabot bot Loading…
chore(deps): bump golang.org/x/oauth2 from 0.31.0 to 0.32.0 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4482 opened Oct 20, 2025 by dependabot bot Loading…
chore(deps): bump golang.org/x/term from 0.35.0 to 0.36.0 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4481 opened Oct 20, 2025 by dependabot bot Loading…
chore(deps): bump chainguard-dev/actions from 1.5.4 to 1.5.7 in the actions group dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
#4480 opened Oct 20, 2025 by dependabot bot Loading…
chore(deps): bump cuelang.org/go from 0.14.1 to 0.14.2 in the gomod group dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4479 opened Oct 20, 2025 by dependabot bot Loading…
chore(deps): bump sigstore/cosign-installer from 3.10.0 to 4.0.0 dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
#4478 opened Oct 20, 2025 by dependabot bot Loading…
Add support to download and attach for protobuf bundles
#4477 opened Oct 20, 2025 by steiza Loading…
3
Deprecate tlog-upload flag
#4458 opened Oct 10, 2025 by haydentherapper Loading…
3
Implement OCI 1.1 discovery in verify-attestation
#4453 opened Oct 10, 2025 by falcorocks Loading…
4
Support multiple container identities
#4415 opened Sep 17, 2025 by emilyzheng Loading…
1
7
Fix signing and verification with ed25519 keys with bundles and Rekor
#4414 opened Sep 16, 2025 by haydentherapper Draft
8
feat(cli): add --payload-media-type to sign (fixes #4300)
#4304 opened Jul 23, 2025 by arubegonsan Loading…
1
2
feat(sign): support loading --cert/--cert-chain from URL and env variable
#4260 opened Jun 24, 2025 by ummetcivi Loading…
Return Public key in sign-blob when no certificate can be extracted.
#4224 opened Jun 6, 2025 by tommyd450 Loading…
2
add sha256:... as alternative way to specify a blob
#4016 opened Jan 17, 2025 by wolfv Loading…
13
Enable signing and verifying image without registry access
#4014 opened Jan 16, 2025 by bkabrda Loading…
1
2
remove previously deprecated attach/download sbom commands
#3891 opened Sep 27, 2024 by hectorj2f Draft
@hectorj2f
4
Add --signing-algorithm flag
#3497 opened Jan 23, 2024 by ret2libc Loading…
9
ProTip! Updated in the last three days: updated:>2025-10-18.