Pin the SHA Yourself: What an Attested Marketplace Buys You
How an attested Claude Code plugin marketplace verifies, signs, and SHA-pins releases, and why none of it replaces deciding your own upgrades yourself.
Technologist | Regenerative Agriculturist
Passionate about building robust, scalable systems and contributing to open source software. Specializing in backend architecture, API design, and developer tools. Author of open specifications for AI memory interchange and extension packaging.
How an attested Claude Code plugin marketplace verifies, signs, and SHA-pins releases, and why none of it replaces deciding your own upgrades yourself.
Coding-agent evaluation, Copilot governance, Claude model policy, secret exposure, API access limits and soil sensing finance defined the developer week.
Every DORA metric counts deployments, but DORA never defines one. Pin it down, instrument all five metrics, decompose lead time, and segment by AI cohort.
The trivy-action compromise, mutable tags as the root bug, the Rekor v2 rotation that breaks old clients, and why a copy can orphan your attestations.
Agent safety research says cooperation is not control, coding tools fenced off what agents can reach, and APIs and farm sensors became evidence surfaces.
A useful software bill of materials is in a format your tools read, bound to the exact digest that ran, and re-scannable without a rebuild. Produce one anyway.
SLSA Build Level 3 is not a project. It is an isolation property: the platform keeps signing material out of user-controlled build steps and isolates runs.
GitHub moved Actions security into enforced platform controls, Node and pnpm split supply-chain work between patches and evidence, secret scanning became verification, and Google shipped a knowledge envelope for agents.
A CI signature is a claim, not a guarantee that the signed image is the one running in your cluster. Put a deny-by-default, fail-closed check at admission.
A decision guide for scaling PostgreSQL by where each option places the wire-protocol boundary: proxies, sharding extensions and managed elastic platforms.