Skip to content

CoseSign1MessageFactory should verify the returned signature from any signing service actually verifies before returning success #161

New issue
New issue
Open
Open
CoseSign1MessageFactory should verify the returned signature from any signing service actually verifies before returning success#161
@JeromySt

Description

@JeromySt
JeromySt
opened on Feb 11, 2026

In cases where a signing service may return an invalid signature to the CoseSign1MessageFactory, we should ensure that the signature returned isable to validate on the CoseSign1Message before returning success to the caller.

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions