mozilla-services/autograph

Issues

• CI on main started failing, but HEAD originally passed

  #822 opened 2 months ago by hwine
  4

• Configurations need someway to be explorable

  #863 opened a year ago by hwine
  1

• Create tool to "sanitize" config files

  #851 opened 8 months ago by hwine
  1

• Disable dependabot

  #881 opened 9 months ago by hwine
  0

• Fix CI

  #853 opened 9 months ago by hwine
  1

• Undocumented context needed to run some utility scripts

  #883 opened a year ago by hwine
  0

• Ensure repeatable builds by vendoring dependencies

  #858 opened a year ago by hwine
  2

• While in maintenance mode, disable non-security updates

  #813 opened a year ago by hwine
  1

• 3rd Party support tooling (scripts) need to be transparent - move them here

  #865 opened a year ago by hwine
  2

• Scripts to general Android APK keys and package for play store

  #866 opened a year ago by hwine
  0

• back out code changes on main between 7.1.11 and HEAD

  #870 opened a year ago by hwine
  2

• Circle CI Nightly runs failing lint checks

  #868 opened a year ago by hwine
  1

• Migrate off Circle CI

  #860 opened a year ago by hwine
  0

• Update deprecated convenience images for CircleCI

  #857 opened 2 years ago by hwine
  0

• Allow `~` characters in filenames for debsign

  #849 opened 2 years ago by ahal
  4

• Provide more details on Bad Requests

  #848 opened 2 years ago by ahal
  0

• Update to use more recent version of PostgreSQL

  #846 opened 2 years ago by hwine
  0

• debsign support

  #744 opened 3 years ago by g-k
  4

• DRY up signature request log.Fields

  #786 opened 3 years ago by g-k
  2

• support signing and returning multiple files in a signing request

  #743 opened 3 years ago by g-k
  3

• switch signers to use io.FS abstraction

  #787 opened 3 years ago by g-k
  0

• gpg2: use cloudhsm

  #785 opened 3 years ago by g-k
  0

• APK v3 support key rotation and signing with multiple keys

  #742 opened 3 years ago by g-k
  0

• log and lint addon id and version from xpi SignFile

  #773 opened 3 years ago by g-k
  0

• log signed XPI or addon version number

  #738 opened 3 years ago by g-k
  0

• remove DSA key support

  #667 opened 3 years ago by g-k
  0

• TODO: re-enable CI failure when coveralls is back up

  #769 opened 3 years ago by g-k
  1

• autograph should make it possible to look-up available keyids for a signer

  #737 opened 3 years ago by bhearsum
  3

• Comment about use of SigningTime in xpi signer is incorrect

  #755 opened 3 years ago by Rob--W
  1

• provide endpoint to expose cert validity and fingerprints

  #745 opened 3 years ago by g-k
  2

• APK2 signer: verify min sdk version

  #746 opened 3 years ago by g-k
  0

• Use signing time as notBefore in EE certificate of XPI signer

  #739 opened 3 years ago by Rob--W
  1

• test autograph starts with an expired XPI intermediate

  #620 opened 4 years ago by g-k
  2

• monitor: verify pgp2 and apk2 signatures

  #622 opened 4 years ago by g-k
  1

• add env or root hash to monitor soft notifications

  #705 opened 4 years ago by g-k
  1

• monitor S3 fetch connection resets

  #674 opened 4 years ago by g-k
  2

• statsd metrics in production

  #675 opened 4 years ago by jbuck
  2

• fix data race test failures

  #664 opened 4 years ago by g-k
  1

• evaluate replacing various online HSM ceremonies from tools/ with boulder's ceremony command

  #617 opened 4 years ago by g-k
  1

• remove apk1 signer

  #637 opened 4 years ago by g-k
  1

• remove rsapss signer

  #663 opened 4 years ago by g-k
  0

• remove unused pgp signer

  #661 opened 4 years ago by g-k
  0

• move module namespace from go.mozilla.org/autograph to github.com/mozilla-services/autograph

  #654 opened 4 years ago by g-k
  0

• containerize the monitor lambda

  #621 opened 4 years ago by g-k
  0

• remove httptest server from monitor chain tests

  #646 opened 4 years ago by g-k
  1

• deduplicate monitor soft notifications

  #623 opened 4 years ago by g-k
  3

• test csigpki against mocks to simulate network failure

  #619 opened 4 years ago by g-k
  1

• make it easier to force content signature renewal

  #618 opened 4 years ago by g-k
  0

• evaluate using letsencrypt/pkcs11key for HSM signer key interface support

  #616 opened 4 years ago by g-k
  0

• add option to run the autograph golang client against a content signature cert chain URL or file

  #615 opened 4 years ago by g-k
  0