Skip to content

Commit

Permalink
Clarify meaning of signer as per confusion in slack
Browse files Browse the repository at this point in the history
  • Loading branch information
@NicoleSchwartz
NicoleSchwartz authored Sep 28, 2023
1 parent 4df7533 commit 97ef2de
Showing 1 changed file with 5 additions and 4 deletions.
9 changes: 5 additions & 4 deletions docs/spec/v1.0/provenance.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -380,10 +380,11 @@ identity because it's all GitHub from the consumer's perspective. Meanwhile,
each self-hosted runner might have its own identity because not all runners are
trusted by all consumers.

Consumers MUST accept only specific signer-builder pairs. For example, "GitHub"
can sign provenance for the "GitHub Actions" builder, and "Google" can sign
provenance for the "Google Cloud Build" builder, but "GitHub" cannot sign for
the "Google Cloud Build" builder.
Consumers MUST accept only specific signer-builder pairs. The signer is the public key identity,
and the builder is the builder.id. For example, "GitHub" can sign provenance
for the "GitHub Actions" builder, and "Google" can sign provenance for the
"Google Cloud Build" builder, but "GitHub" cannot sign for the
"Google Cloud Build" builder.

Design rationale: The builder is distinct from the signer in order to support
the case where one signer generates attestations for more than one builder, as
Expand Down

0 comments on commit 97ef2de

Please sign in to comment.