Skip to content

Pull requests: sigstore/cosign

New pull request New
31 Open 3,515 Closed
31 Open 3,515 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

fix(deps): CVE-2026-2303 / CVE-2026-2303 go.mongodb.org/mongo-driver
#4764 opened Mar 10, 2026 by matthiasbruns Loading…
1
Handle whitespace-only certificate annotation
#4760 opened Mar 9, 2026 by Hayden-IO Loading…
1
chore(deps): bump docker/login-action from 3.7.0 to 4.0.0 dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
#4759 opened Mar 9, 2026 by dependabot bot Loading…
chore(deps): bump the actions group with 2 updates dependencies Pull requests that update a dependency file github_actions Pull requests that update GitHub Actions code
#4758 opened Mar 9, 2026 by dependabot bot Loading…
chore(deps): bump gitlab.com/gitlab-org/api/client-go from 1.41.0 to 1.46.0 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4757 opened Mar 9, 2026 by dependabot bot Loading…
chore(deps): bump golang.org/x/sync from 0.19.0 to 0.20.0 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4756 opened Mar 9, 2026 by dependabot bot Loading…
chore(deps): bump golang.org/x/oauth2 from 0.35.0 to 0.36.0 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4755 opened Mar 9, 2026 by dependabot bot Loading…
chore(deps): bump github.com/open-policy-agent/opa from 1.13.2 to 1.14.1 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4754 opened Mar 9, 2026 by dependabot bot Loading…
chore(deps): bump github.com/buildkite/agent/v3 from 3.118.0 to 3.119.1 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4753 opened Mar 9, 2026 by dependabot bot Loading…
chore(deps): bump google.golang.org/api from 0.267.0 to 0.270.0 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4752 opened Mar 9, 2026 by dependabot bot Loading…
chore(deps): bump cuelang.org/go from 0.15.4 to 0.16.0 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4751 opened Mar 9, 2026 by dependabot bot Loading…
chore(deps): bump github.com/awslabs/amazon-ecr-credential-helper/ecr-login from 0.11.0 to 0.12.0 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4750 opened Mar 9, 2026 by dependabot bot Loading…
chore(deps): bump the gomod group with 2 updates dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4749 opened Mar 9, 2026 by dependabot bot Loading…
fix(verify): Attach provided certificate and chain to loaded signature
#4737 opened Mar 4, 2026 by aaronlew02 Loading…
4
feat: add command update-key-pair (solves #3168)
#4730 opened Feb 28, 2026 by Aex12 Loading…
1
Add cosign-specific user-agent to all HTTP requests
#4705 opened Feb 17, 2026 by cpanato Loading…
1
2
chore(deps): bump golang from 1.25.6 to 1.25.7 in the all group dependencies Pull requests that update a dependency file docker Pull requests that update docker code
#4690 opened Feb 9, 2026 by dependabot bot Loading…
chore(deps): bump github.com/in-toto/in-toto-golang from 0.9.0 to 0.10.0 dependencies Pull requests that update a dependency file go Pull requests that update Go code
#4669 opened Jan 26, 2026 by dependabot bot Loading…
2
chore: make oci11 referrer selection deterministic
#4656 opened Jan 20, 2026 by 1seal Loading…
2
Sign exclusively via sigstore-go
#4618 opened Jan 5, 2026 by aaronlew02 Loading…
1
38
Supporting OCI Signing with X.509 Certificate Chain
#4614 opened Jan 5, 2026 by yangkenneth Draft
2
fixes sigstore/cosign/issues/4591
#4593 opened Dec 20, 2025 by rhuddleston Loading…
1
1
Add org.opencontainers.image.title annotation to attestation layers
#4498 opened Oct 24, 2025 by ralphbean Loading…
1
1
Support stdout output for attest-blob bundles
#4495 opened Oct 24, 2025 by ralphbean Loading…
1
4
feat(ISV-6377): let cosign use HashedRekord for TLOG verification of attestations
#4490 opened Oct 22, 2025 by BorekZnovustvoritel Loading…
3
ProTip! Adding no:label will show everything without a label.