Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Feat]: Configuration Attestor #414

Open
jkjell opened this issue Jan 14, 2025 · 0 comments
Open

[Feat]: Configuration Attestor #414

jkjell opened this issue Jan 14, 2025 · 0 comments
Labels
feature New feature (larger than enhancement) good first issue Good for newcomers

Comments

@jkjell
Copy link
Member

jkjell commented Jan 14, 2025

Describe the solution you'd like:

A pre-material attestor could capture the configuration of the witness run operation to ensure the command was observed with the proper set of configuration values.

User value:

This will allow an additional layer of protections to subsequent policy verification to ensure the intent of process observation matches reality.

Expected behavior:

A configuration attestor captures relevant CLI parameters and stores them in the attestation-collection

Testing changes required:

Unit tests of the new attestor and policy test to ensure functionality

Documentation changes required:

Document json schema and context of the new attestor.
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
feature New feature (larger than enhancement) good first issue Good for newcomers
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@jkjell