Trust Registry EN

Signing Identities

All signing identities authorized to sign artifacts on behalf of PatternedDesigns.

Signing identities represent the entities authorized to create cryptographic signatures on behalf of this organization. Each identity is bound to a specific key and defines who or what is permitted to sign.

Human

J.R. Beverly — Release Manager jrbeverly-release-manager
Active

Human signing identity for security advisories and emergency trust disclosures.

Key
advisory-ed25519-2025
Active since
Jan 1, 2025

CI Pipeline

Gitea Actions — Release Pipeline gitea-actions-release-pipeline
Active

Primary CI identity for versioned release artifact signing.

Key
ed25519-2026-primary
Active since
Jan 15, 2025
Last activity
Feb 20, 2026
Platform
gitea / patterneddesigns

Automation

Nightly Build Automation nightly-build-automation
Active

Automated signing for nightly snapshot builds and internal test artifacts.

Key
ed25519-2025-secondary
Active since
Mar 1, 2025
Last activity
Feb 23, 2026

Cloud KMS

AWS KMS — Container Image Signer cloud-kms-container-signer
Active

Hardware-backed signing identity for container images. Private key never leaves AWS KMS.

Key
cloud-kms-2025-container
Active since
Jun 15, 2024
Last activity
Feb 22, 2026

Keyless / OIDC

Sigstore Keyless — Gitea Actions CI sigstore-keyless-ci
Active

Ephemeral OIDC-based signing via Sigstore. No persistent key material.

Key
keyless-gitea-actions
Active since
Sep 1, 2024
Last activity
Feb 21, 2026