File tree 3 files changed +12
-11
lines changed
3 files changed +12
-11
lines changed Original file line number Diff line number Diff line change @@ -17,11 +17,12 @@ To learn more, see [TUF overview](/docs/overview/) and
1717
1818## Governance
1919
20- The TUF project is managed by the [ Linux Foundation] under the [ Cloud Native Computing
21- Foundation] [ CNCF ] . The consensus builder for TUF is [ Prof. Justin Cappos] of the
22- [ Secure Systems Lab] at [ New York University] ( https://engineering.nyu.edu/ ) . Project
23- maintainers <sup >[[ 1]] [[ 2]] </sup > are comprised of collaborators from academia and
24- the industry. Contributors and maintainers are governed by the [ CNCF Community Code
20+ The TUF project is managed by the [ Linux Foundation] under the [ Cloud Native
21+ Computing Foundation] [ CNCF ] . The consensus builder for TUF is [ Prof. Justin
22+ Cappos] of the [ Secure Systems Lab] at
23+ [ New York University] ( https://engineering.nyu.edu/ ) . Project maintainers
24+ <sup >[[ 1]] [[ 2]] </sup > are comprised of collaborators from academia and the
25+ industry. Contributors and maintainers are governed by the [ CNCF Community Code
2526of Conduct] [ CoC ] . For details, see [ Governance] .
2627
2728## Funding
Original file line number Diff line number Diff line change @@ -101,8 +101,8 @@ of a nested delegation.
101101
102102Signed by: Snapshot role.
103103
104- The snapshot.json metadata file lists version numbers of all metadata files
105- other than timestamp.json . This file ensures that clients will see a consistent
104+ The snapshot.json metadata file lists version numbers and/or hashes of all of
105+ the targets metadata files . This file ensures that clients will see a consistent
106106view of all files on the repository. That is, metadata files (and thus Target
107107files) that existed on the repository at different times cannot be combined and
108108presented to clients by an attacker.
Original file line number Diff line number Diff line change @@ -9,11 +9,11 @@ The TUF project consists of three components:
99- [ Specification] – the detailed TUF specification describes how to add TUF
1010 metadata to a repository and the process to arrange for clients to use that
1111 metadata to download and verify targets.
12- - [ Standardization process] – major changes to the specification, including new features,
13- are made as TUF Augmentation Proposals (TAPs).
12+ - [ Standardization process] – major changes to the specification, including new
13+ features, are made as TUF Augmentation Proposals (TAPs).
1414- [ Reference implementation] – python-tuf provides a reference implementation of
15- the TUF specification and is used as a vital part of the TAPs process to prototype
16- changes to the specification.
15+ the TUF specification and is used as a vital part of the TAPs process to
16+ prototype changes to the specification.
1717
1818The project is currently managed by a team of collaborators from academia and
1919industry.
You can’t perform that action at this time.
0 commit comments