The kosli attest generic CLI command can attest anything, but unlike a “typed” attestation (such as kosli attest snyk), it does not calculate a true/false compliance value for you. Customers have reported that while a generic “escape hatch” is useful, it nevertheless has some drawbacks: It can take some effort to calculate a true/false value in some cases. It would be nice to split generic attestations into different types. Most importantly, many customers would prefer it if Kosli cal...| Blog | Kosli on Kosli - Make Friends with Change
Introducing kosli attest custom—a powerful new way to define and automate compliance attestations in Kosli. Unlike generic attestations, custom attestations allow you to create reusable types, and enforce compliance rules with schemas and jq expressions. Importantly, they allow Kosli to calculate all true/false compliance values as part of a zero trust model. Learn how to implement custom attestations in your CI workflow with real-world examples from Cyber-Dojo’s differ microservice.| Kosli