docs: update cosign readme.md by junczhu · Pull Request #14 · notaryproject/ratify-verifier-go

junczhu · 2025-02-25T08:33:57Z

Adds a comprehensive README file for the ratify-verifier-go Cosign client library.
The key changes include:

Overview of Cosign Solution: Provides a brief introduction to the Cosign verifier, explaining key concepts, its purpose and functionality.
Verify Scenarios and Usage Instructions: Details on how to integrate and use the Cosign verifier within the Ratify framework.
Refences

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

codecov-commenter · 2025-02-25T08:35:21Z

Codecov Report

All modified and coverable lines are covered by tests ✅

🚀 New features to boost your workflow:

❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

junczhu · 2025-02-26T13:10:37Z

Updated PR description.

cosign/README.md

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

cosign/README.md

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

Copilot

Pull Request Overview

This PR introduces a comprehensive README file that provides an overview, workflows, and detailed usage instructions for the Cosign verifier within the ratify-verifier-go client library.

Adds an introductory glossary and conceptual background on Sigstore components.
Includes detailed Mermaid diagrams illustrating signing and verification workflows.

cosign/README.md

Copilot

Copilot encountered an error and was unable to review this pull request. You can try again by re-requesting a review.

cosign/README.md

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

Copilot

Pull Request Overview

This PR adds a comprehensive README file for the ratify-verifier-go Cosign client library. The documentation provides an overview of the Cosign solution, explains the signing and verification workflows using mermaid diagrams, and details various verification scenarios and concepts.

cosign/README.md

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

shizhMSFT

LGTM with suggestions

cosign/README.md

Copilot

Pull Request Overview

This PR adds a comprehensive README for the Cosign client library used in the Ratify verifier framework, providing background information, detailed workflows for signing and verification (both keyless and key-based), and references.

Introduces key concepts and components (Fulcio, Rekor, TUF) with diagrams.
Provides sample outputs for both keyless and key-based verification scenarios.
Lists detailed external references and notes for future improvements.

cosign/README.md

binbin-li

lgtm

cosign/README.md

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

docs: update cosign readme.md

3b647d1

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

docs: update cosign verifier readme

5c49de1

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

junczhu marked this pull request as ready for review February 26, 2025 06:47

junczhu added 2 commits February 26, 2025 07:10

docs: update cosign verifier readme 2

1890e94

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

docs: update readme

6170460

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

shizhMSFT reviewed Feb 26, 2025

View reviewed changes

junczhu added 3 commits February 27, 2025 01:04

docs: resolve comments

24f84ab

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

docs: resolve comments 2

2e92d46

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

docs: resolve comments 3

8956c85

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

junczhu force-pushed the init-cosign-readme branch from 512ae31 to 8956c85 Compare February 27, 2025 06:33

docs: update introduction

ecc282d

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

junczhu marked this pull request as draft February 27, 2025 12:13

junczhu marked this pull request as ready for review February 27, 2025 15:26

docs: update I/O

fd7c23b

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

junczhu force-pushed the init-cosign-readme branch from e89a068 to fd7c23b Compare February 27, 2025 15:32

junczhu added 2 commits February 27, 2025 16:24

docs: update 2

c31f86f

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

docs: update 3

6d4585d

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

junczhu force-pushed the init-cosign-readme branch from 31f8fe1 to 6d4585d Compare February 27, 2025 17:10

shizhMSFT reviewed Mar 2, 2025

View reviewed changes

binbin-li reviewed Mar 3, 2025

View reviewed changes

cosign/README.md Outdated Show resolved Hide resolved

cosign/README.md Outdated Show resolved Hide resolved

junczhu added 3 commits March 3, 2025 04:31

docs: update design

ee0a213

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

docs: update design 2

38aa136

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

docs: update design 3

2a33778

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

junczhu force-pushed the init-cosign-readme branch 3 times, most recently from 02e9a9d to 956587c Compare March 3, 2025 09:04

docs: update design FINAL

df7921a

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

junczhu force-pushed the init-cosign-readme branch from 956587c to df7921a Compare March 3, 2025 09:25

junczhu force-pushed the init-cosign-readme branch from 3ee5db8 to 75b0391 Compare March 24, 2025 03:52

junczhu requested review from binbin-li, Copilot and shizhMSFT March 24, 2025 03:54

Copilot AI reviewed Mar 24, 2025

View reviewed changes

cosign/README.md Show resolved Hide resolved

junczhu force-pushed the init-cosign-readme branch from 75b0391 to 0617f68 Compare March 24, 2025 04:47

shizhMSFT requested a review from Copilot March 25, 2025 08:06

Copilot AI reviewed Mar 25, 2025

View reviewed changes

shizhMSFT reviewed Mar 25, 2025

View reviewed changes

cosign/README.md Outdated Show resolved Hide resolved

cosign/README.md Outdated Show resolved Hide resolved

cosign/README.md Show resolved Hide resolved

cosign/README.md Outdated Show resolved Hide resolved

cosign/README.md Show resolved Hide resolved

shizhMSFT reviewed Mar 25, 2025

View reviewed changes

cosign/README.md Show resolved Hide resolved

docs: updated verifier design

8c6d794

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

junczhu force-pushed the init-cosign-readme branch from 0617f68 to 8c6d794 Compare March 25, 2025 10:53

junczhu requested a review from Copilot March 28, 2025 04:33

Copilot AI reviewed Mar 28, 2025

View reviewed changes

cosign/README.md Outdated Show resolved Hide resolved

cosign/README.md Show resolved Hide resolved

junczhu force-pushed the init-cosign-readme branch from 585aca4 to ca4f3b4 Compare March 28, 2025 04:38

chore: resolve comments and add more details

93f5ce8

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

junczhu force-pushed the init-cosign-readme branch from ca4f3b4 to 93f5ce8 Compare March 28, 2025 04:39

shizhMSFT previously approved these changes Mar 28, 2025

View reviewed changes

cosign/README.md Outdated Show resolved Hide resolved

cosign/README.md Outdated Show resolved Hide resolved

junczhu dismissed shizhMSFT’s stale review via cb22d53 April 1, 2025 02:11

junczhu requested a review from Copilot April 1, 2025 02:15

Copilot AI reviewed Apr 1, 2025

View reviewed changes

cosign/README.md Outdated Show resolved Hide resolved

cosign/README.md Show resolved Hide resolved

cosign/README.md Outdated Show resolved Hide resolved

junczhu force-pushed the init-cosign-readme branch 2 times, most recently from 4c23f10 to 98b777a Compare April 1, 2025 02:19

binbin-li previously approved these changes Apr 1, 2025

View reviewed changes

cosign/README.md Outdated Show resolved Hide resolved

cosign/README.md Outdated Show resolved Hide resolved

docs: resolve comments

566c3c0

Signed-off-by: Juncheng Zhu <junczhu@microsoft.com>

junczhu dismissed binbin-li’s stale review via 566c3c0 April 1, 2025 08:19

junczhu force-pushed the init-cosign-readme branch from 98b777a to 566c3c0 Compare April 1, 2025 08:19

junczhu requested a review from binbin-li April 1, 2025 08:20

binbin-li approved these changes Apr 1, 2025

View reviewed changes

binbin-li merged commit 6d36381 into notaryproject:main Apr 1, 2025
10 checks passed

Conversation

junczhu commented Feb 25, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

codecov-commenter commented Feb 25, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Codecov Report

Uh oh!

junczhu commented Feb 26, 2025

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull Request Overview

Uh oh!

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull Request Overview

Uh oh!

Uh oh!

Uh oh!

shizhMSFT left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Copilot AI left a comment

Choose a reason for hiding this comment

Pull Request Overview

Uh oh!

Uh oh!

Uh oh!

Uh oh!

binbin-li left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

5 participants

junczhu commented Feb 25, 2025 •

edited

Loading

codecov-commenter commented Feb 25, 2025 •

edited

Loading