use token file path with Fulcio and fix unused var #1463
Closed
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Unit tests are failing for fulcio,
I don’t fully understand all the downstream impacts here, but I do understand the root issue. With GPT’s help, I was able to fix it to unblock the release.
Could someone with Fulcio expertise please review and validate this change?
This PR fixes Fulcio token handling in pkg/chains/signing/x509/x509.go where a raw JWT string could be treated as a filesystem path, causing file-open errors during signer initialization.
Co-authored-by: GPT-5
Changes
Submitter Checklist
As the author of this PR, please check off the items in this checklist:
functionality, content, code)
Release Notes