Type Alias VerifyOptions

Source
Expand description

Consumer-side verification options. All fields optional — defaults apply to the common case. Escape hatches are for heavy callers (reusing a verifier across calls) and slow networks (timeouts / retries).

type VerifyOptions = {
    bundleFetchRetryDelays?: readonly number[];
    dispatcher?: Dispatcher;
    maxBinaryBytes?: number;
    maxBinarySeconds?: number;
    signal?: AbortSignal;
    timeoutMs?: number;
    trustMaterial?: TrustMaterial;
    verifier?: BundleVerifier;
}

Properties§

bundleFetchRetryDelays

Delays in milliseconds between retries when a sidecar bundle URL 404s (CDN propagation after a fresh release-asset upload). Publish-side self-verify only; installs see either the asset or a permanent 404. Default: [2000, 5000, 10000, 15000]. Pass [] to disable.

dispatcher

undici dispatcher — proxy / mTLS / custom connector.

maxBinaryBytes

Per-binary download size cap, bytes. Default: 268435456 (256 MiB).

maxBinarySeconds

Per-binary fetch timeout, seconds. Default: 300.

signal

AbortSignal for the entire verify + download pipeline.

timeoutMs

Per-request HTTP timeout, ms. Default: 30000.

trustMaterial

Pre-loaded trust material. Loaded via loadTrustMaterial() if omitted.

verifier

Pre-built sigstore bundle verifier. If omitted, one is built per call from trustMaterial (or TUF). Supply a shared verifier to amortize TUF trust-material loading across many calls, or tune tlogThreshold / ctLogThreshold via sigstore.createVerifier.