Unlocking secure software distribution with Minder and GitHub Artifact Attestations
Yesterday, GitHub announced an important new security feature called GitHub Artifact Attestations. It’s powered by sigstore (a technology created by our CTO, Luke Hinds) and it helps developers generate and verify signed attestations for anything made with GitHub Actions. We...