VerifyPlugin verifies plugin data against a signature using data in memory.
(archiveData, provData []byte, filename, keyring string)
| 23 | |
| 24 | // VerifyPlugin verifies plugin data against a signature using data in memory. |
| 25 | func VerifyPlugin(archiveData, provData []byte, filename, keyring string) (*provenance.Verification, error) { |
| 26 | // Create signatory from keyring |
| 27 | sig, err := provenance.NewFromKeyring(keyring, "") |
| 28 | if err != nil { |
| 29 | return nil, err |
| 30 | } |
| 31 | |
| 32 | // Use the new VerifyData method directly |
| 33 | return sig.Verify(archiveData, provData, filename) |
| 34 | } |
| 35 | |
| 36 | // IsTarball checks if a file has a tarball extension |
| 37 | func IsTarball(filename string) bool { |
searching dependent graphs…