Affected by GO-2025-4193 and 1 other vulnerabilities

GO-2025-4193: Fulcio allocates excessive memory during token parsing in github.com/sigstore/fulcio

GO-2026-4311: Fulcio is vulnerable to Server-Side Request Forgery (SSRF) via MetaIssuer Regex Bypass in github.com/sigstore/fulcio

fileca

package

v1.5.0 Latest Latest Go to latest Published: Jul 9, 2024 License: Apache-2.0 Imports: 11 Imported by: 1

Details

Valid go.mod file
Redistributable license
Tagged version
Stable version
Learn more about best practices

Repository

github.com/sigstore/fulcio

Links

Open Source Insights

Documentation ¶

Index ¶

func NewFileCA(certPath, keyPath, keyPass string, watch bool) (ca.CertificateAuthority, error)

Constants ¶

This section is empty.

Variables ¶

This section is empty.

Functions ¶

func NewFileCA ¶

func NewFileCA(certPath, keyPath, keyPass string, watch bool) (ca.CertificateAuthority, error)

NewFileCA returns a file backed certificate authority. Expects paths to a certificate and key that are PEM encoded. The key must be encrypted according to RFC 1423

Types ¶

This section is empty.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL