Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

📖doc tweaks #199

Merged
merged 3 commits into from
Jun 8, 2022
Merged

Conversation

joshuagl
Copy link
Member

@joshuagl joshuagl commented Jun 8, 2022

  • Add the image of the cert as referenced by SPECIFICATION.md
  • Move verification steps to top-level README (from internal/builders/go/README)
  • Provide more detail about what SLSA requirements the workflows help to achieve (build and provenance, not source)

This was omitted when docs were copied from the slsa-github-generator-go
repository.

Signed-off-by: Joshua Lock <[email protected]>
* Move verification steps to top-level README, these are not ecosystem
  specific
* Make 'Provenance format' a child of 'Technical design'
* Make 'Generation of provenance' a second-level section

Signed-off-by: Joshua Lock <[email protected]>
Emphasise that the generator and builders can be used to meet the Build
and Provenance requirements only, Source requirements must be met with
other tools.

Signed-off-by: Joshua Lock <[email protected]>
Copy link
Collaborator

@laurentsimon laurentsimon left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks!

@laurentsimon laurentsimon merged commit 9735199 into slsa-framework:main Jun 8, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants