Lib.rs

Sigstore › Features

Cargo Features

[dependencies]
sigstore = { version = "0.13.0", default-features = false, features = ["full", "bundle", "cached-client", "cert", "cosign", "fulcio", "mock-client", "native-tls", "oauth", "registry", "rekor", "rustls-tls", "rustls-tls-native-roots", "sign", "sigstore-trust-root", "test-registry", "verify", "wasm", "ring"] }
default = full, native-tls

These default features are set whenever sigstore is added without default-features = false somewhere in the dependency tree.

full default = bundle, cached-client, cosign, fulcio, mock-client, rekor, sigstore-trust-root
bundle full = sign, verify
cached-client full

Enables cached ^0.56

cert cosign? sign? verify?

Enables aws-lc-rs, aws-lc-rs of rustls-webpki

cosign full = cert, registry

Enables async-trait, cfg-if, oci-client ^0.15, olpc-cjson, and regex

Affects errors::SigstoreVerifyConstraintsError, errors::SigstoreApplicationConstraintsError, sigstore::cosign, registry::oci_reference

fulcio full sign? verify? = oauth

Enables reqwest ^0.12, serde_repr, serde_with, and webbrowser

Affects sigstore::fulcio

mock-client full

Enables async-trait and oci-client ^0.15

native-tls default

Enables native-tls of optional oci-client ^0.15, optional openidconnect, and optional reqwest ^0.12

Affects config::ClientConfig.accept_invalid_hostnames

oauth fulcio?

Enables openidconnect and reqwest ^0.12

Affects sigstore::oauth

registry cosign?

Enables async-trait, oci-client ^0.15, and olpc-cjson

Affects sigstore::registry

rekor full sign? verify?

Enables reqwest ^0.12

Affects sigstore::rekor

rustls-tls

Enables rustls-tls of optional oci-client ^0.15, optional openidconnect, and optional reqwest ^0.12

rustls-tls-native-roots

This feature flag is used to allow using the platform's native certificate store when using rustls suites

Enables rustls-tls-native-roots of optional oci-client ^0.15

sign bundle? = cert, fulcio, rekor

Enables hex, json-syntax, and sigstore_protobuf_specs

Affects bundle::sign, sigstore::bundle

sigstore-trust-root full

Enables tough, futures, futures-util, hex, reqwest ^0.12, and sigstore_protobuf_specs, sync of tokio

Affects trust::sigstore

test-registry

used for testing against a test registry

verify bundle? = cert, fulcio, rekor

Enables hex, json-syntax, and sigstore_protobuf_specs

Affects bundle::verify, sigstore::bundle

wasm

Enables wasmbind of chrono, js of getrandom ^0.2, wasm32_unknown_unknown_js of optional ring

Features from optional dependencies

In crates that don't use the dep: syntax, optional dependencies automatically become Cargo features. These features may have been created by mistake, and this functionality may be removed in the future.

getrandom wasm?

Enables getrandom ^0.2

ring implicit feature

Enables ring

ring:

An experiment