Cargo Features

sigstore = { version = "0.9.0", default-features = false, features = ["wasm", "full-native-tls", "full-rustls-tls", "test-registry", "fulcio-native-tls", "fulcio-rustls-tls", "fulcio", "oauth-native-tls", "oauth-rustls-tls", "oauth", "rekor-native-tls", "rekor-rustls-tls", "rekor", "sigstore-trust-root", "sign", "cosign-native-tls", "cosign-rustls-tls", "cosign", "cert", "registry-native-tls", "registry-rustls-tls", "registry", "mock-client-native-tls", "mock-client-rustls-tls", "mock-client", "cached-client"] }
default = cached-client, full-native-tls, sign, sigstore-trust-root

These default features are set whenever sigstore is added without default-features = false somewhere in the dependency tree.


Enables js of getrandom


Feature to enable JavaScript bindings on wasm*-unknown-unknown

full-native-tls default = cosign-native-tls, fulcio-native-tls, mock-client-native-tls, rekor-native-tls
full-rustls-tls = cosign-rustls-tls, fulcio-rustls-tls, mock-client-rustls-tls, rekor-rustls-tls

This features is used by tests that use docker to create a registry

fulcio-native-tls full-native-tls = fulcio, oauth-native-tls

Enables native-tls of reqwest

fulcio-rustls-tls full-rustls-tls? = fulcio, oauth-rustls-tls

Enables rustls-tls of reqwest

fulcio fulcio-native-tls? fulcio-rustls-tls?

Affects sigstore::fulcio

oauth-native-tls fulcio-native-tls? = oauth

Enables native-tls of openidconnect

oauth-rustls-tls fulcio-rustls-tls? = oauth

Enables rustls-tls of openidconnect

oauth oauth-native-tls? oauth-rustls-tls?

Affects sigstore::oauth

rekor-native-tls full-native-tls = rekor

Enables native-tls of reqwest


Enables native-tls specific functionality not available by default.

rekor-rustls-tls full-rustls-tls? = rekor

Enables rustls-tls of reqwest

rekor rekor-native-tls? rekor-rustls-tls? = reqwest

Affects sigstore::rekor

sigstore-trust-root default = futures-util, regex, tough

Enables sync of tokio

Affects trust::sigstore

sign default

Affects sigstore::sign

cosign-native-tls full-native-tls = cert, cosign, registry-native-tls

Enables native-tls of oci-distribution ^0.10

cosign-rustls-tls full-rustls-tls? = cert, cosign, registry-rustls-tls

Enables rustls-tls of oci-distribution ^0.10

cosign cosign-native-tls? cosign-rustls-tls?

Affects errors::SigstoreVerifyConstraintsError, errors::SigstoreApplicationConstraintsError, sigstore::cosign, registry::oci_reference

cert cosign-native-tls? cosign-rustls-tls?
registry-native-tls cosign-native-tls? = registry

Enables native-tls of oci-distribution ^0.10

registry-rustls-tls cosign-rustls-tls? = registry

Enables rustls-tls of oci-distribution ^0.10

registry registry-native-tls? registry-rustls-tls?

Affects sigstore::registry

mock-client-native-tls full-native-tls = mock-client

Enables native-tls of oci-distribution ^0.10

mock-client-rustls-tls full-rustls-tls? = mock-client

Enables rustls-tls of oci-distribution ^0.10

mock-client mock-client-native-tls? mock-client-rustls-tls?
cached-client default = cached

Features from optional dependencies

In crates that don't use the dep: syntax, optional dependencies automatically become Cargo features. These features may have been created by mistake, and this functionality may be removed in the future.

cached cached-client

Enables cached ^0.49.2

futures-util sigstore-trust-root
oci-distribution cosign-native-tls? cosign-rustls-tls? mock-client-native-tls? mock-client-rustls-tls? registry-native-tls? registry-rustls-tls?

Enables oci-distribution ^0.10

openidconnect oauth-native-tls? oauth-rustls-tls?
regex sigstore-trust-root
reqwest fulcio-native-tls? fulcio-rustls-tls? rekor? rekor-native-tls? rekor-rustls-tls?
tough sigstore-trust-root