-
Epic
-
Resolution: Unresolved
-
Normal
-
None
-
None
-
None
-
GPG validation for multi-source apps.
-
False
-
-
False
-
SECFLOWOTL-229 - Source Verification Policies
-
-
Add the ability to validate GPG signatures in multi-source applications. This functionality already exists for single-source apps, but not yet for multi-source.
Requirements
| Requirements | Notes | IS MVP |
| Multi-source apps are included when doing GPG signature verification | ||
Use Cases
GCPD Case 03962909:
“We'd like to migrate to multi source applications to simplify our code, but have a strict requirement for GPG validation which prevents us using multi source Applications.”
Out of scope
GPG verification of anything other than multi-source apps.
Dependencies
None known.
Background, and strategic fit
This has been requested by 1 customer - the same who have requested we add GPG validation support to other areas of the product.
Assumptions
None known.
Customer Considerations
None known.
Documentation/QE Considerations
Docs impact:
- Release notes required
Impact
TBD
Related Architecture/Technical Documents
Definition of Ready
- The objectives of the feature are clearly defined and aligned with the business strategy.
- All feature requirements have been clearly defined by Product Owners.
- The feature has been broken down into epics.
- The feature has been stack ranked.
- Definition of the business outcome is in the Outcome Jira (which must have a parent Jira).
- is blocked by
-
-
- In Progress
-
- relates to
-
RFE-6494 Add GPG validation support to multi source Applications.
-
- Approved
-
