save checkpoint
This commit is contained in:
master
@@ -93,3 +93,23 @@ Validation is fail-closed:
|
||||
- reject invalid Rekor index values
|
||||
|
||||
This contract is authoritative for Sprint 110 and blocks CONCELIER-ATTEST-73-001/002 and EXCITITOR-ATTEST-01-003/73-001/73-002.
|
||||
|
||||
## Gate Artifact Extension (v1.1, 2026-02-10)
|
||||
|
||||
Promotion evidence consumers now rely on additional optional fields for policy-gate semantics:
|
||||
|
||||
- `producer_bundle.evidence_score_value` (0-100 numeric score for threshold checks)
|
||||
- `producer_bundle.build_link.exists` (bool)
|
||||
- `producer_bundle.build_link.product_digest.sha256|sha512` (optional digest binding inputs)
|
||||
- `producer_bundle.artifact_digest.sha256|sha512` (optional explicit artifact digest)
|
||||
- `producer_bundle.dsse_signatures[]`:
|
||||
- `key_id`
|
||||
- `algorithm`
|
||||
- `valid`
|
||||
- `producer_bundle.rekor.checked_at` (UTC RFC3339 timestamp for freshness TTL checks)
|
||||
- `producer_bundle.human_decision_dsse_ref` (optional DSSE reference for signed escalation disposition)
|
||||
|
||||
Offline exports must retain enough metadata for air-gapped gate replay:
|
||||
- Rekor proof references (`tile_id`, `inclusion_proof_path`) and freshness timestamp.
|
||||
- DSSE signer evidence needed for k-of-n verification.
|
||||
- Human decision DSSE reference when escalation policy requires signed disposition.
|
||||
|
||||
Reference in New Issue
Block a user