Skip to content

update: check if verification is skipped by trust policy#468

Merged
shizhMSFT merged 5 commits intonotaryproject:mainfrom
patrickzheng200:skip
Dec 7, 2022
Merged

update: check if verification is skipped by trust policy#468
shizhMSFT merged 5 commits intonotaryproject:mainfrom
patrickzheng200:skip

Conversation

@patrickzheng200
Copy link
Copy Markdown
Contributor

@patrickzheng200 patrickzheng200 commented Dec 6, 2022

Previous to this PR: if -v flag is not set, and the verification process is skipped, notation would still print out message stating "Successfully verified signature for xxx".

This PR tries to fix this, if verification is actually skipped, notation would print out "Trust policy is configured to skip signature verification for xxx".

Signed-off-by: Patrick Zheng patrickzheng@microsoft.com

check if verification is skipped by trust policy
138c49c 
Signed-off-by: Patrick Zheng <patrickzheng@microsoft.com>
@patrickzheng200 patrickzheng200 self-assigned this Dec 6, 2022
@codecov-commenter
Copy link
Copy Markdown

codecov-commenter commented Dec 6, 2022
edited
Loading

Codecov Report

Merging #468 (08f049c) into main (63f4121) will decrease coverage by 0.09%.
The diff coverage is 0.00%.

@@            Coverage Diff             @@
##             main     #468      +/-   ##
==========================================
- Coverage   32.26%   32.16%   -0.10%     
==========================================
  Files          25       25              
  Lines        1336     1340       +4     
==========================================
  Hits          431      431              
- Misses        893      897       +4     
  Partials       12       12
Impacted Files Coverage Δ
cmd/notation/verify.go 27.83% <0.00%> (-1.20%) ⬇️

📣 We’re building smart automated test selection to slash your CI/CD build times. Learn more

update
d56ab50 
Signed-off-by: Patrick Zheng <patrickzheng@microsoft.com>
JeyJeyGao
JeyJeyGao approved these changes Dec 6, 2022
View reviewed changes
Copy link
Copy Markdown
Contributor

@JeyJeyGao JeyJeyGao left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

update
12ebcac 
Signed-off-by: Patrick Zheng <patrickzheng@microsoft.com>
shizhMSFT
shizhMSFT approved these changes Dec 6, 2022
View reviewed changes
Copy link
Copy Markdown
Contributor

@shizhMSFT shizhMSFT left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

vaninrao10
vaninrao10 reviewed Dec 6, 2022
View reviewed changes
Copy link
Copy Markdown
Contributor

@vaninrao10 vaninrao10 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

rgnote
rgnote reviewed Dec 6, 2022
View reviewed changes
rgnote
rgnote approved these changes Dec 6, 2022
View reviewed changes
Copy link
Copy Markdown
Contributor

@rgnote rgnote left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

Patrick Zheng added 2 commits December 7, 2022 08:49
changed notation artifact type to application/vnd.cncf.notary.signature
08f049c 
Signed-off-by: Patrick Zheng <patrickzheng@microsoft.com>
updated per code review
efe8b21 
Signed-off-by: Patrick Zheng <patrickzheng@microsoft.com>
shizhMSFT
shizhMSFT approved these changes Dec 7, 2022
View reviewed changes
Copy link
Copy Markdown
Contributor

@shizhMSFT shizhMSFT left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@shizhMSFT
Copy link
Copy Markdown
Contributor

shizhMSFT commented Dec 7, 2022

Linking notaryproject/notation-go#231

@shizhMSFT shizhMSFT merged commit 373e50e into notaryproject:main Dec 7, 2022
@patrickzheng200 patrickzheng200 deleted the skip branch December 7, 2022 01:45
@shizhMSFT shizhMSFT mentioned this pull request Dec 7, 2022
Closed
7h3-3mp7y-m4n pushed a commit to 7h3-3mp7y-m4n/notation that referenced this pull request Mar 29, 2025
@7h3-3mp7y-m4n
update: check if verification is skipped by trust policy (notaryproje…
0828b3d 
…ct#468)

Previous to this PR: if -v flag is not set, and the verification process
is skipped, notation would still print out message stating "Successfully
verified signature for xxx".

This PR tries to fix this, if verification is actually skipped, notation
would print out "Trust policy is configured to skip signature
verification for xxx".

Signed-off-by: Patrick Zheng <patrickzheng@microsoft.com>
FeynmanZhou pushed a commit to FeynmanZhou/notation that referenced this pull request May 15, 2025
@FeynmanZhou
update: check if verification is skipped by trust policy (notaryproje…
d2b8b92 
…ct#468)

Previous to this PR: if -v flag is not set, and the verification process
is skipped, notation would still print out message stating "Successfully
verified signature for xxx".

This PR tries to fix this, if verification is actually skipped, notation
would print out "Trust policy is configured to skip signature
verification for xxx".

Signed-off-by: Patrick Zheng <patrickzheng@microsoft.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@vaninrao10 vaninrao10 vaninrao10 left review comments

@rgnote rgnote rgnote approved these changes

@shizhMSFT shizhMSFT shizhMSFT approved these changes

@priteshbandi priteshbandi Awaiting requested review from priteshbandi priteshbandi is a code owner

+1 more reviewer

@JeyJeyGao JeyJeyGao JeyJeyGao approved these changes

Reviewers whose approvals may not affect merge requirements

Assignees

@patrickzheng200 patrickzheng200

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

6 participants

@patrickzheng200 @codecov-commenter @shizhMSFT @rgnote @JeyJeyGao @vaninrao10