2025/08/04 false positive reduction#1072
Merged
Merged
Chainguard Guardener / Enforce - Commit Signing
succeeded
Aug 4, 2025 in 0s
Successfully verified commit signature.
| CLAIM | DESCRIPTION | |
|---|---|---|
| ✅ | Found Git signature | |
| ✅ | Validated Git signature | |
| ✅ | Validated Rekor entry | |
| ✅ | Allowed by policy |
Details
Certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 408823464129822749549449272594355288736693567198 (0x479c47356ba6a9f99e6acd8e00e08f3e58593ede)
Signature Algorithm: ECDSA-SHA384
Issuer: O=sigstore.dev,CN=sigstore-intermediate
Validity
Not Before: Aug 4 18:32:18 2025 UTC
Not After : Aug 4 18:42:18 2025 UTC
Subject: Subject Public Key Info:
Public Key Algorithm: ECDSA
Public-Key: (256 bit)
X:
46:5e:90:d7:3e:58:b9:b8:4a:fa:d3:db:17:80:51:
8c:10:ca:fc:01:67:07:9f:34:9f:db:df:52:7c:07:
f3:c9
Y:
94:dd:1e:a5:28:bf:de:60:73:bb:bb:5b:10:b3:1c:
7c:23:db:93:3b:aa:41:27:86:f1:19:74:8e:f5:85:
8e:e3
Curve: P-256
X509v3 extensions:
X509v3 Key Usage: critical
Digital Signature
X509v3 Extended Key Usage:
Code Signing
X509v3 Subject Key Identifier:
EB:60:AC:1C:D3:FB:AC:AC:42:DD:9A:67:24:70:9A:30:F1:E6:A0:A0
X509v3 Authority Key Identifier:
keyid:DF:D3:E9:CF:56:24:11:96:F9:A8:D8:E9:28:55:A2:C6:2E:18:64:3F
X509v3 Subject Alternative Name: critical
email:evan.gibler@chainguard.dev
oidcIssuer:
https://accounts.google.com
Unknown extension 1.3.6.1.4.1.57264.1.8
Signed Certificate Timestamp:
BHkAdwB1AN09MGrGxxEyYxkeHJlnNwKiSl643jyt/4eKcoAvKe6OAAABmHZbGRgAAAQDAEYwRAIgVTd8Wamvf6vysW8xj0OXqfkag3/Ca9wjHsn3MfT+PM0CIA7ylJ9l5qDjB/lPc/wiLu5G8WTTFDKLUCxHba6rTolE
Signature Algorithm: ECDSA-SHA384
30:65:02:31:00:ea:7d:77:b9:68:71:a8:49:ff:79:4f:0b:27:
da:83:39:0e:5e:b4:f8:66:6d:b2:29:3a:5d:66:d5:15:51:74:
f4:c3:7c:1d:5a:fe:bd:b6:cd:07:98:05:82:b7:92:5d:a6:02:
30:29:6b:89:51:aa:1e:eb:20:57:1a:bc:32:be:de:f1:e0:9a:
2b:37:8a:ad:66:06:8f:7d:c5:d0:19:fd:91:87:f3:27:ba:5e:
1a:cb:3a:3b:02:06:43:63:7d:a4:58:10:60
Rekor Entry
{
"body": "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",
"integratedTime": 1754332338,
"logID": "c0d23d6ad406973f9559f3ba2d1ca01f84147d8ffc5b8445c224f98b9591801d",
"logIndex": 349103169,
"verification": {
"inclusionProof": {
"checkpoint": "rekor.sigstore.dev - 1193050959916656506\n227484659\noLzM+d46XzzzyuZ37y6QiQ3YdT/HrghoTuE5MPunI/I=\n\n— rekor.sigstore.dev wNI9ajBFAiEAzMRfnRQnQkePKhLP2m1aguVxW29GqI0osSV10cZ91a4CIFSKnHdyWXMH6mIbleSMhcMz/0/FEfhIAa0kSR6LS1tp\n",
"hashes": [
"06ae0f1f71a157e5a935d8d84670dd69fb5c0b75b47f7057311f832c3766e0ff",
"51995dcf2048087799042acf43be9cd476ed6b7379986e7f002cca26f394fb45",
"4875a3da8a70b1280b953347c8afe3c0d211648faad0e32f2898d580a9287104",
"3f6afdcd9bb650c897a93b4ffd2162742436126c6aa4ea0c64a63fc7ec4c8879",
"820c0dbfd8ea51936738c3ebf58427c9804ff76cd892b6425a14282023f7a430",
"d582d9eea5b41e14078abbfd9bfd35e78f3810843f5718e2998c2a2438004c80",
"22eead07dd629b7c0156d7ec07e1c2e814e3243591436389e9c7ef1a8516a5c3",
"ba250e67253d758005bf1da2b3723c03e301be24ced46a12e02ab54511dd2396",
"ab8d481da5f08210603d43e32300e3d88ff319a678e3abdaf776f97c09c65bc5",
"3a159973b8e4a13e40fc6899d392dbcf96010a99bb595258d10610e85bc00fa7",
"711f1f59c8148cb1574434e518232080fde79bdf5e0725bbf7a37264e7f0438b",
"f2dfc19098aa88a99e1d488196c26ff05f1a6abef13a5412c47970455f5d147d",
"d08927525a715221c29466c8fedf0c1ba9fea2c85a81a4f68d095a6c0b14e9cf",
"2ac40c411afe51b30ac38fd0bfa5d761d93e47689a1e26996517ecdc0bc8d88b",
"329135a066a43ad1b35ea76b96e67c1ea069d3f31ac72b08540a93f0e39a7bd9",
"824bdd96c2ebd5119b721829212049fc8ef14b3c60412d333439669d91db9c2b",
"9035eec72dbb89a767285191dde4b494b2b92534e1a91e26b2dd10eb324de85f",
"adfdba110cdd1e1e6111db750f9c42208f82794beb3cc6f96ed8f8572edbe078",
"067c6891868e46bc980b2aded00de2ed471632c926e1bab2d83d3d430edf0853",
"63741201067a062c4dcb45afbbf5701f0c36e7ac558248b3fa7fbc72c36c31f7",
"ba7da230e853ba188d2582b94b12c9e7bacd91441d967bc2a91f716ecda5ab95",
"8f7f5857e10b6c5ecbcc9fc1b1450683733d99e05dc2a29b3cddc8efde151092",
"43c014746acb38affeabb6696f94f7869a3600c120dea5b6547c393ad16d8512",
"c0b00d4f434cc48461fe9e6b45c6a6e0ca694886d45c87d3d47b7d1500365e72"
],
"logIndex": 227198907,
"rootHash": "a0bcccf9de3a5f3cf3cae677ef2e90890dd8753fc7ae08684ee13930fba723f2",
"treeSize": 227484659
},
"signedEntryTimestamp": "MEUCIH2KUjZ6j2g2lDj7VlC2Z19EZhlvclk6hN+Q7OdW/7WvAiEAwGVbLBHP3o2m5XXD4SOUjzweKPAFcGsQSrRzOdpoAN4="
}
}
Loading