FromContext extracts a cache from the provided context.

GetIncludeObjectMeta returns the highest level ObjectMeta for a resource possible.

GetIncludeSpec returns the highest level spec for a resource possible.

GetIncludeTypeMeta returns the highest level TypeMeta for a resource possible.

IncludeObjectMeta adds the ObjectMeta to context so it's later available for inclusion in PolicyResult.

IncludeSpec adds the spec to context so it's later available for inclusion in PolicyResult.

IncludeTypeMeta adds the TypeMeta to context so it's later available for inclusion in PolicyResult.

ValidatePolicy will go through all the Authorities for a given image/policy and return validated authorities if at least one of the Authorities validated the signatures OR attestations if atttestations were specified.

ValidatePolicyAttestationsForAuthority takes the Authority and tries to verify attestations against it.

ValidatePolicySignaturesForAuthority takes the Authority and tries to verify a signature against it.

AuthorityMatch returns either Signatures (if there are no Attestations specified), or Attestations if there are Attestations specified.

CacheResult wraps PolicyResult and errors that are suitable for caching purposes.

GithubExtensions holds the Github-related OID extensions.

NoCache is pretty much what it says, it caches nothing.

PolicyAttestation contains a normalized result of a validated attestation, which consists of the PolicySignature part, and some additional attestation specific fields.

PolicyResult is the result of a successful ValidatePolicy call.

PolicySignature contains a normalized result of a validated signature, where signature could be a signature on the Image (.sig) or on an Attestation (.att).