Skip to content

Commit

Permalink
feat: add cosign keyless signatures
Browse files Browse the repository at this point in the history 
- add cosign keyless signatures
  • Loading branch information
@slimm609
slimm609 committed Apr 27, 2024
1 parent 6b4bbfc commit e3035c1
Show file tree
Hide file tree
Showing 3 changed files with 8 additions and 1 deletion.
7 changes: 6 additions & 1 deletion README.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -17,7 +17,12 @@ For OSX
-------
Most of the tools do not work on mach-O binaries or the OSX kernel, so it is not supported

Manually verify checksec
**Cosign Verify Checksec**

`cosign verify-blob --signature checksec_new.sig --certificate checksec_new.pub checksec [email protected] --certificate-oidc-issuer=https://github.com/login/oauth`

**Openssl Verify Checksec**
Openssl verification is being deprecated in favor of Cosign Verification, which is backed by a hardware security module and provides a greater level of intergrity.

`openssl dgst -sha256 -verify checksec.pub -signature checksec.sig checksec`

Expand Down
1 change: 1 addition & 0 deletions checksec_new.pub
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
LS0tLS1CRUdJTiBDRVJUSUZJQ0FURS0tLS0tCk1JSUMwVENDQWxlZ0F3SUJBZ0lVWXJkQXNRZWF6SC9ibFU3bVI1cXRTRVJVOFlFd0NnWUlLb1pJemowRUF3TXcKTnpFVk1CTUdBMVVFQ2hNTWMybG5jM1J2Y21VdVpHVjJNUjR3SEFZRFZRUURFeFZ6YVdkemRHOXlaUzFwYm5SbApjbTFsWkdsaGRHVXdIaGNOTWpRd05ESTNNak15T1RBMldoY05NalF3TkRJM01qTXpPVEEyV2pBQU1Ga3dFd1lICktvWkl6ajBDQVFZSUtvWkl6ajBEQVFjRFFnQUU5Q051Rld1bm1kNlZ6YkNyQm1iYUdkMUFuL3c4eVFRcGF6a1IKSUdGM1BHZ1hCSjhmSFFFTE1JUlAvRW9BVzRPbVY5aDBiMTdEU3lLNlhNWXVZbGNvTTZPQ0FYWXdnZ0Z5TUE0RwpBMVVkRHdFQi93UUVBd0lIZ0RBVEJnTlZIU1VFRERBS0JnZ3JCZ0VGQlFjREF6QWRCZ05WSFE0RUZnUVVVZjBQClRpa1NUTXFCYXRqbUJ2dFV2bURGdk5jd0h3WURWUjBqQkJnd0ZvQVUzOVBwejFZa0VaYjVxTmpwS0ZXaXhpNFkKWkQ4d0lBWURWUjBSQVFIL0JCWXdGSUVTYzJ4cGJXMDJNRGxBWjIxaGFXd3VZMjl0TUN3R0Npc0dBUVFCZzc4dwpBUUVFSG1oMGRIQnpPaTh2WjJsMGFIVmlMbU52YlM5c2IyZHBiaTl2WVhWMGFEQXVCZ29yQmdFRUFZTy9NQUVJCkJDQU1IbWgwZEhCek9pOHZaMmwwYUhWaUxtTnZiUzlzYjJkcGJpOXZZWFYwYURDQmlnWUtLd1lCQkFIV2VRSUUKQWdSOEJIb0FlQUIyQU4wOU1Hckd4eEV5WXhrZUhKbG5Od0tpU2w2NDNqeXQvNGVLY29BdktlNk9BQUFCanlIawpFNTBBQUFRREFFY3dSUUloQUtxY1hyVitvRVRqa3drUG93MEsvSzlXd0gzbExmTnVqMWJEdDJUcEdpd1ZBaUEvCm12bXpGemJUbitrblZJVUlCQVBxSlcrdEoxOTgrQVdXc0JMMHllSjh1VEFLQmdncWhrak9QUVFEQXdOb0FEQmwKQWpFQXBRR29pTHpKZ1NhREVSZzBLN1V4TDVGMEdEclk4Lzh6SUZlSUR5aERKSVdWTTlJTUVqMCtIektnMFRPUgpacnlTQWpBMXlXNzRuNEJveE1yd3BGRkU4bjg2OXpVOEQzQnRyQ0hMVzFvR1kzT0ZIa0NNUHZPSUU5bzlOSEpnCkI4U2dzMDg9Ci0tLS0tRU5EIENFUlRJRklDQVRFLS0tLS0K
1 change: 1 addition & 0 deletions checksec_new.sig
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1 @@
MEUCIQDWbgZM95MYkvWxwrz/yNCZ6WPM0PTQpX/+v2Tu+9N3zgIgLuL/3oTJS/QsR08pq54vD3F5Roy5+0s4xrqCWv4NXYs=

0 comments on commit e3035c1

Please sign in to comment.