in-toto-dbom-wrapper is a package that wraps the in-toto package so that the in-toto layouts and links are able to be stored in and retrieved from a Digital Bill of Materials (DBoM)
installed via pip. See
pip install ./python3 -m pip install ./| Name | Description |
|---|---|
| CHANNEL_ID | DBoM channel to access |
| GATEWAY_ADDRESS | Address of the chainsource gateway |
| REPO_ID | DBoM repo to access |
| ASSET_ID | DBoM asset to access |
| Name |
|---|
| in-toto-record-dbom-wrapper |
| in-toto-run-dbom-wrapper |
| in-toto-verify-dbom-wrapper |
| Name | Description |
|---|---|
| --assetID | DBoM asset id |
| --channelID | DBoM channel to access |
| --gatewayAddress | Address of the chainsource gateway |
| --inTotoHelp | Get the in-toto help |
| --repoID | DBoM repo to access |
| Name | Required | Description |
|---|---|---|
| asset_id | true | DBoM asset id |
| channel_id | false | DBoM channel to access |
| gateway_address | false | Address of the chainsource gateway |
| path | true | name of the layout |
| repo_id | false | DBoM repo to access |
| Name | Required | Description |
|---|---|---|
| asset_id | true | DBoM asset id |
| channel_id | false | DBoM channel to access |
| gateway_address | false | Address of the chainsource gateway |
| key | true | owner's key |
| repo_id | false | DBoM repo to access |
See the in-toto docs for more information about in-toto
To learn more about the wrapper, see this example which will walk through how the wrapper works
If you have any queries on in-toto-dbom-wrapper, feel free to reach us on any of our communication channels
If you have questions, concerns, bug reports, etc, please file an issue in this repository's issue tracker.
Find the instructions on how you can contribute in CONTRIBUTING.