Skip to content

fix: use content-disposition filename for fetched keys#2283

Open
arpitjain099 wants to merge 1 commit into
chainguard-dev:mainfrom
arpitjain099:fix/key-content-disposition
Open

fix: use content-disposition filename for fetched keys#2283
arpitjain099 wants to merge 1 commit into
chainguard-dev:mainfrom
arpitjain099:fix/key-content-disposition

fix: honor key filename from content-disposition

6a41700
Select commit
Loading
Failed to load commit list.
Chainguard Guardener / Enforce - Commit Signing succeeded Jun 18, 2026 in 0s

Successfully verified commit signature.

CLAIM DESCRIPTION
Found Git signature
Validated Git signature
Validated Rekor entry
Allowed by policy

Details

Certificate

Details
Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 281771287134813210468977496179509457346241047716 (0x315b0fbea093113196ff6f6fc3bebac548d52ca4)
    Signature Algorithm: ECDSA-SHA384
        Issuer: O=sigstore.dev,CN=sigstore-intermediate
        Validity
            Not Before: Jun 18 13:36:45 2026 UTC
            Not After : Jun 18 13:46:45 2026 UTC
        Subject:         Subject Public Key Info:
            Public Key Algorithm: ECDSA
                Public-Key: (256 bit)
                X:
                    19:df:b9:f0:13:37:38:f8:5c:77:bf:f7:b2:57:49:
                    5b:a4:b7:9c:95:4d:b1:c7:4b:4b:3c:64:d5:8c:a8:
                    52:1c
                Y:
                    0a:d4:b8:e0:1f:bb:ba:d3:39:d3:1a:4b:e3:a6:92:
                    b5:ef:1c:f0:03:2a:34:6f:bb:e0:89:db:ed:21:7e:
                    8e:1c
                Curve: P-256
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature
            X509v3 Extended Key Usage:
                Code Signing
            X509v3 Subject Key Identifier:
                79:ED:42:2D:FC:CE:F0:FD:EB:12:67:2C:1C:35:47:DD:49:14:91:48
            X509v3 Authority Key Identifier:
                keyid:DF:D3:E9:CF:56:24:11:96:F9:A8:D8:E9:28:55:A2:C6:2E:18:64:3F
            X509v3 Subject Alternative Name: critical
                email:arpitjain099@gmail.com
            oidcIssuer:
                https://github.com/login/oauth
            Unknown extension 1.3.6.1.4.1.57264.1.8
            Unknown extension 1.3.6.1.4.1.57264.1.24
            Signed Certificate Timestamp:
                BHoAeAB2AN09MGrGxxEyYxkeHJlnNwKiSl643jyt/4eKcoAvKe6OAAABntryy6oAAAQDAEcwRQIhAK9QnrpA+bG717omtXHtwY+iZQE3nCJhgI8g+93KtXODAiBYfTiZ262ls3w8ls5FXvnZln2/WbqX6BIyJTgCgdLQMw==

    Signature Algorithm: ECDSA-SHA384
         30:64:02:30:32:bc:85:d9:10:ef:68:2f:78:4b:0f:03:9a:37:
         26:cd:1b:1e:8b:be:d4:36:e8:9a:49:a0:aa:66:49:ce:ff:39:
         e7:fc:22:2f:a1:4a:43:ae:02:16:1e:d5:a0:22:35:8f:02:30:
         72:6a:03:b1:a3:a7:1f:8c:2c:52:b4:8f:26:fd:48:bb:f1:cc:
         8f:ee:54:db:73:1e:c2:f8:c1:02:f2:f8:7b:3f:7d:c6:cc:e1:
         a8:51:ca:40:3f:ab:d7:31:c0:ed:c9:16

Rekor Entry

Details
{
  "body": "eyJhcGlWZXJzaW9uIjoiMC4wLjEiLCJraW5kIjoiaGFzaGVkcmVrb3JkIiwic3BlYyI6eyJkYXRhIjp7Imhhc2giOnsiYWxnb3JpdGhtIjoic2hhMjU2IiwidmFsdWUiOiI1ODI1MTU1OWNlYTQ2N2EzN2FjNjU4NjA3ZmI3MzljZDg5NjJmNWFmNjk4NTUxNmI1YWFiOTg4YThmZjY0N2UwIn19LCJzaWduYXR1cmUiOnsiY29udGVudCI6Ik1FWUNJUURKZStmYUNseEZKaEpmWlVubHF6OE1SekFLT2RpaXA5MWllSHVtMzY4SUlBSWhBTW9WRmd2M0QvZnI2RUh1ZmtmbERMQS9WWTJuaTgyNFR3WlJOV0lxRnhVUiIsInB1YmxpY0tleSI6eyJjb250ZW50IjoiTFMwdExTMUNSVWRKVGlCRFJWSlVTVVpKUTBGVVJTMHRMUzB0Q2sxSlNVUkxSRU5EUVhFclowRjNTVUpCWjBsVlRWWnpVSFp4UTFSRlZFZFhMekk1ZG5jM05qWjRWV3BXVEV0UmQwTm5XVWxMYjFwSmVtb3dSVUYzVFhjS1RucEZWazFDVFVkQk1WVkZRMmhOVFdNeWJHNWpNMUoyWTIxVmRWcEhWakpOVWpSM1NFRlpSRlpSVVVSRmVGWjZZVmRrZW1SSE9YbGFVekZ3WW01U2JBcGpiVEZzV2tkc2FHUkhWWGRJYUdOT1RXcFpkMDVxUlRSTlZFMTZUbXBSTVZkb1kwNU5hbGwzVG1wRk5FMVVUVEJPYWxFeFYycEJRVTFHYTNkRmQxbElDa3R2V2tsNmFqQkRRVkZaU1V0dldrbDZhakJFUVZGalJGRm5RVVZIWkNzMU9FSk5NMDlRYUdOa055OHpjMnhrU2xjMlV6TnVTbFpPYzJOa1RGTjZlR3NLTVZsNWIxVm9kMHN4VEdwblNEZDFOakI2YmxSSGEzWnFjSEJMTVRkNGVuZEJlVzh3WWpkMloybGtkblJKV0RaUFNFdFBRMEZqTkhkblowaExUVUUwUndwQk1WVmtSSGRGUWk5M1VVVkJkMGxJWjBSQlZFSm5UbFpJVTFWRlJFUkJTMEpuWjNKQ1owVkdRbEZqUkVGNlFXUkNaMDVXU0ZFMFJVWm5VVlZsWlRGRENreG1lazg0VUROeVJXMWpjMGhFVmtnelZXdFZhMVZuZDBoM1dVUldVakJxUWtKbmQwWnZRVlV6T1ZCd2VqRlphMFZhWWpWeFRtcHdTMFpYYVhocE5Ga0tXa1E0ZDBwQldVUldVakJTUVZGSUwwSkNiM2RIU1VWWFdWaEtkMkZZVW5GWlYyeDFUVVJyTlZGSFpIUlpWMnh6VEcxT2RtSlVRWE5DWjI5eVFtZEZSUXBCV1U4dlRVRkZRa0pDTlc5a1NGSjNZM3B2ZGt3eVpIQmtSMmd4V1drMWFtSXlNSFppUnpsdVlWYzBkbUl5UmpGa1IyZDNUR2RaUzB0M1dVSkNRVWRFQ25aNlFVSkRRVkZuUkVJMWIyUklVbmRqZW05MlRESmtjR1JIYURGWmFUVnFZakl3ZG1KSE9XNWhWelIyWWpKR01XUkhaM2RWWjFsTFMzZFpRa0pCUjBRS2RucEJRa2RCVWtWRVJVcEVXakpPTmxSWGNGSmxWVGxGVTFSU1JtRldjSFphUldoVFpESk9ObUl5ZUU1aE1XeHpWRmQwWVdKdFJsbFZiVGxyVmpCc01RcFhWRWsxWkVWd1ZWTnJaR2xTZW14MVdWWmpNR0pGTVhKWGJscGFWMFpaZDFsVlJYZG5XVzlIUTJselIwRlJVVUl4Ym10RFFrRkpSV1pCVWpaQlNHZEJDbVJuUkdSUVZFSnhlSE5qVWsxdFRWcElhSGxhV25walEyOXJjR1YxVGpRNGNtWXJTR2x1UzBGTWVXNTFhbWRCUVVGYU4yRTRjM1Z4UVVGQlJVRjNRa2dLVFVWVlEwbFJRM1pWU2pZMlVWQnRlSFU1WlRaS2NsWjROMk5IVUc5dFZVSk9OWGRwV1ZsRFVFbFFkbVI1Y2xaNlozZEpaMWRJTURSdFpIVjBjR0pPT0FwUVNtSlBVbFkzTlRKYVdqbDJNVzAyYkN0blUwMXBWVFJCYjBoVE1FUk5kME5uV1VsTGIxcEplbW93UlVGM1RVUmFkMEYzV2tGSmQwMXllVVl5VWtSMkNtRkRPVFJUZHpoRWJXcGpiWHBTYzJWcE56ZFZUblZwWVZOaFEzRmFhMjVQTDNwdWJpOURTWFp2VlhCRWNtZEpWMGgwVjJkSmFsZFFRV3BDZVdGblQzZ0tielpqWm1wRGVGTjBTVGh0TDFWcE56aGplVkEzYkZSaVkzZzNReXROUlVNNGRtZzNVRE16UjNwUFIyOVZZM0JCVURaMldFMWpSSFI1VWxrOUNpMHRMUzB0UlU1RUlFTkZVbFJKUmtsRFFWUkZMUzB0TFMwSyJ9fX19",
  "integratedTime": 1781789805,
  "logID": "c0d23d6ad406973f9559f3ba2d1ca01f84147d8ffc5b8445c224f98b9591801d",
  "logIndex": 1859722434,
  "verification": {
    "inclusionProof": {
      "checkpoint": "rekor.sigstore.dev - 1193050959916656506\n1737818412\nb1ETdW1hRz9S58yTciBnozyKArqW/MwCYiPZL+0RSgM=\n\n— rekor.sigstore.dev wNI9ajBFAiEAjB0UDx8AX11EEBAEJB1Pl+1gfBrTqz7AbT/qI8CxnukCIAVXL9Oj7WY4QYmfAgSSEaJ+U9v2zbnTn2Pp0UCGJNoO\n",
      "hashes": [
        "397c4c17e399f392a47c52f2d454d3cd4fd8ed38456356998a70888efd670ec6",
        "48986593f27cd69923b8fe4ad291b95308f7b9d3361d1ae0f38ff3fcc03723ce",
        "6096f935ce81eeee6493f440393a1fbe16255ba33be5b3f74588b32b42cf0f66",
        "7b7007023090c88e36e5d7d2f3cb0692ee8c8d99b9b1acf16865e9c10a0b41bf",
        "983f21eec14ecc179f961939bfeb98f1514eb0dcb669d7171426adee5ccc2c8a",
        "f96910158de53ad35bad1888d6a171ed4af9af0ba7ece9b84e8f7c4897f82650",
        "ed4910f6f316e6c2dfca6d0facedea4651813041aa2ddfce35e9e3fe888e7a2c",
        "f948383a24b5ce81077e08898ff6c410da23a28baac56c9d37c73777a0042fa3",
        "e49369eb28933014eee043cc920fb0d089a0aa88cb07c6551e35945bf1f987ed",
        "f381aa96991077dc58ea286c02e515d82dee374c3e92e4dc3e328a741767faa2",
        "31e8bb02b20c35dc9fedfc8ceddd7bc521b0e748200050a1ccf2c50e170b4e73",
        "daf4379080c9ba80afe434d3bd5705a1fd7a2fbb3ee4d88addb6be8ca52f48cb",
        "3cb506b7f77349ecd64b7dc64aab740eaf14db04e8e29cea11364ee101c276b6",
        "9aa33b27e8bbe48a6e0f4f507a3894063787f390196be7d29b84575c59a3de52",
        "ef6142e4560b8710786b88a20bde7aa3407f7d3e788a9e11e35becc364012ad5",
        "958190f626f00bcfac98c90f43a4dc8499b71fd35cfda4d82df75169c1850a1c",
        "75ac6665a6a3469655f89c4788e61984906248a379b9caa38765a719b1e18abc",
        "0ce09ea12328bc8bcb13192122f8aca30f40b8d5e0796b3810293247a11ca985"
      ],
      "logIndex": 1737818172,
      "rootHash": "6f5113756d61473f52e7cc93722067a33c8a02ba96fccc026223d92fed114a03",
      "treeSize": 1737818412
    },
    "signedEntryTimestamp": "MEQCID7TA2XdyzmHybY+czb5r1WvawbuX1FYKb0Yv0xc3QCZAiByg7QQFe+N8CiJfdvnOfGjYrP4b8hjTk+0nSaFGOayFw=="
  }
}