From 1d224d924197d3fab3f624a5cbe27f25d934e9f2 Mon Sep 17 00:00:00 2001 From: Hector Fernandez Date: Fri, 1 Jul 2022 14:29:29 +0200 Subject: [PATCH] chore: add note about SIGSTORE_REKOR_PUBLIC_KEY (#2040) Signed-off-by: hectorj2f --- pkg/cosign/tlog.go | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/pkg/cosign/tlog.go b/pkg/cosign/tlog.go index 704463915c6..8a6392e8614 100644 --- a/pkg/cosign/tlog.go +++ b/pkg/cosign/tlog.go @@ -55,7 +55,7 @@ type RekorPubKey struct { const ( // If specified, you can specify an oob Public Key that Rekor uses using - // this ENV variable. + // this ENV variable. This ENV var is only for testing purposes. altRekorPublicKey = "SIGSTORE_REKOR_PUBLIC_KEY" // Add Rekor API Public Key // If specified, will fetch the Rekor Public Key from the specified Rekor @@ -90,7 +90,7 @@ func GetRekorPubs(ctx context.Context, rekorClient *client.Rekor) (map[string]Re altRekorPub := os.Getenv(altRekorPublicKey) if altRekorPub != "" { - fmt.Fprintf(os.Stderr, "**Warning** Using a non-standard public key for Rekor: %s\n", altRekorPub) + fmt.Fprintf(os.Stderr, "**Warning ('%s' is only for testing)** Using a non-standard public key for Rekor: %s\n", altRekorPublicKey, altRekorPub) raw, err := os.ReadFile(altRekorPub) if err != nil { return nil, fmt.Errorf("error reading alternate Rekor public key file: %w", err)