Confirm the following are included in your repo, checking each box:
- completed README.md file with the necessary information https://github.com/endlessm/shim-review/blob/endless-shim-x64-20240822/README.md
- shim.efi to be signed https://github.com/endlessm/shim-review/blob/endless-shim-x64-20240822/shimx64.efi
- public portion of your certificate(s) embedded in shim (the file passed to VENDOR_CERT_FILE) https://github.com/endlessm/shim-review/blob/endless-shim-x64-20240822/endless-uefi-ca.der
- binaries, for which hashes are added to vendor_db ( if you use vendor_db and have hashes allow-listed ) We do not use the vendor_db functionality.
- any extra patches to shim via your own git tree or as files https://github.com/endlessm/shim/tree/endless/15.8-1_deb12u1endless1/debian/patches
- any extra patches to grub via your own git tree or as files
The full set of patches relative to 2.06 can be viewed at
https://github.com/endlessm/grub/compare/grub-2.06...Release_6.0.2 The
commits with
[DEB]prefix come from Debian's2.06-13+deb12u1release. All other commits are Endless specific. - build logs https://github.com/endlessm/shim-review/blob/endless-shim-x64-20240822/buildlog.txt
- a Dockerfile to reproduce the build of the provided shim EFI binaries https://github.com/endlessm/shim-review/blob/endless-shim-x64-20240822/Dockerfile
https://github.com/endlessm/shim-review/releases/tag/endless-shim-x64-20240822
7859e02e1fc6dff8e2b221dfcbfaffcb6d1e95e2acb65403e5db7c849f9221cd
If no security contacts have changed since verification, what is the link to your request, where they've been verified (if any, otherwise N/A)?
The security contacts have not changed, however I can't find any indication of verification in any previous reviews. Those are: