From 0354c9e775ae36a888f20440d755b8d9483311aa Mon Sep 17 00:00:00 2001
From: laurentsimon <laurentsimon@google.com>
Date: Wed, 20 Mar 2024 15:58:48 +0000
Subject: [PATCH 1/4] update

Signed-off-by: laurentsimon <laurentsimon@google.com>
---
 CHANGELOG.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index c110443668..0a49450677 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -10,7 +10,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 <!-- toc -->
 
 - [Unreleased](#unreleased)
-  - [Unreleased: Breaking Change: attestation-name Workflow Input and Output](#unreleased-breaking-change-attestation-name-workflow-input-and-output)
+  - [Unreleased: TUF root fix](#unreleased-tuf-root-fix)
   - [Unreleased: Gradle Builder](#unreleased-gradle-builder)
   - [Unreleased: Go Builder](#unreleased-go-builder)
   - [Unreleased: Container Generator](#unreleased-container-generator)

From 32f4b910d5cf1dde6b1359942c68f0e60b773e2c Mon Sep 17 00:00:00 2001
From: laurentsimon <laurentsimon@google.com>
Date: Wed, 20 Mar 2024 16:14:49 +0000
Subject: [PATCH 2/4] update

Signed-off-by: laurentsimon <laurentsimon@google.com>
---
 README.md | 15 +++++++++++++++
 1 file changed, 15 insertions(+)

diff --git a/README.md b/README.md
index c6d632fc4e..67d300bc30 100644
--- a/README.md
+++ b/README.md
@@ -27,6 +27,7 @@
   - [Installation](#installation)
   - [Inputs](#inputs)
   - [Command line examples](#command-line-examples)
+- [Known Issues](#known-issues)
 - [Build Your Own Builder](#build-your-own-builder)
 - [Project Roadmap](#project-roadmap)
 - [Technical design](#technical-design)
@@ -199,6 +200,20 @@ The inputs of the verifier are described in [slsa-framework/slsa-verifier#availa
 
 A command line example is provided in [slsa-framework/slsa-verifier#example](https://github.com/slsa-framework/slsa-verifier#example).
 
+## Known Issues
+
+### error updating to TUF remote mirror: invalid
+
+This will occur only when generating provenance with all builders and generators.
+
+**Affected versions:** all versions up and including v1.9.0
+
+```
+error updating to TUF remote mirror: invalid
+```
+
+This issue is tracked by [issue #3350](https://github.com/slsa-framework/slsa-github-generator/issues/3350). You _must_ update to the newest patch versions of each minor release to fix this issue.
+
 ## Build Your Own Builder
 
 Use the [BYOB framework](BYOB.md) to create your own SLSA builder on GitHub. If you have an existing GitHub Action, you can use the BYOB framework to wrap it into a SLSA builder.

From 57af8f9c3a00708a5299a08051b55c86dd96b680 Mon Sep 17 00:00:00 2001
From: laurentsimon <laurentsimon@google.com>
Date: Wed, 20 Mar 2024 16:22:35 +0000
Subject: [PATCH 3/4] update

Signed-off-by: laurentsimon <laurentsimon@google.com>
---
 README.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/README.md b/README.md
index 67d300bc30..c762e77191 100644
--- a/README.md
+++ b/README.md
@@ -28,6 +28,7 @@
   - [Inputs](#inputs)
   - [Command line examples](#command-line-examples)
 - [Known Issues](#known-issues)
+  - [error updating to TUF remote mirror: invalid](#error-updating-to-tuf-remote-mirror-invalid)
 - [Build Your Own Builder](#build-your-own-builder)
 - [Project Roadmap](#project-roadmap)
 - [Technical design](#technical-design)

From 6c3aedd328d692533f7acdca3af61aaead6e18a4 Mon Sep 17 00:00:00 2001
From: laurentsimon <laurentsimon@google.com>
Date: Wed, 20 Mar 2024 16:31:39 +0000
Subject: [PATCH 4/4] update

Signed-off-by: laurentsimon <laurentsimon@google.com>
---
 CHANGELOG.md | 2 +-
 README.md    | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 0a49450677..c110443668 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -10,7 +10,7 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 <!-- toc -->
 
 - [Unreleased](#unreleased)
-  - [Unreleased: TUF root fix](#unreleased-tuf-root-fix)
+  - [Unreleased: Breaking Change: attestation-name Workflow Input and Output](#unreleased-breaking-change-attestation-name-workflow-input-and-output)
   - [Unreleased: Gradle Builder](#unreleased-gradle-builder)
   - [Unreleased: Go Builder](#unreleased-go-builder)
   - [Unreleased: Container Generator](#unreleased-container-generator)
diff --git a/README.md b/README.md
index c762e77191..852df654c2 100644
--- a/README.md
+++ b/README.md
@@ -209,7 +209,7 @@ This will occur only when generating provenance with all builders and generators
 
 **Affected versions:** all versions up and including v1.9.0
 
-```
+```shell
 error updating to TUF remote mirror: invalid
 ```