Is your feature request related to a problem? Please describe.
Create a reproducible process to "create" a Trusted Root given the Sigstore public good instance.
Describe the behavior you'd like
- Given connectivity to an instance of Sigstore
- When A command or process is invoked
- Then the current trusted root for that instance is written to a file locally
Describe alternatives you've considered
Create a hack/ script to create the trusted root and do not expose this as a command to users.
Additional context
This may be a command we want to hide initially - it should probably live under zarf tools but we will need to identify it's proper home.
This will be used to reproducibly create the Trusted Root that is embedded in zarf.
Is your feature request related to a problem? Please describe.
Create a reproducible process to "create" a Trusted Root given the Sigstore public good instance.
Describe the behavior you'd like
Describe alternatives you've considered
Create a
hack/script to create the trusted root and do not expose this as a command to users.Additional context
This may be a command we want to hide initially - it should probably live under
zarf toolsbut we will need to identify it's proper home.This will be used to reproducibly create the Trusted Root that is embedded in zarf.