Help Center

Security

Improvement

Announcement

spacelift

👀 In Review

➡️ Planned

⚙️ In Progress

✅ Completed

❌ Rejected

⬆️ Gathering votes

🗑️ Archived

🔭 Discovery

Access Control

Ansible

Blueprints

CloudFormation

Contexts

UI/UX

Integrations

Stacks

Workers

IaC Workflows

Spaces

Policies

Resources

Filters

Spacectl

Pulumi

Kubernetes

Dashboard

Terraform registry

Terragrunt

Stack Dependencies

Logs

Drift Detection

Spacelift Provider

Notifications

OpenTofu

Helm

OIDC

Observability

Self-hosted

👨‍💻Solutions Eng Requests

👩🏻‍💻Support Requests

Feature Requests Roadmap

Got an idea for a feature request? Let us know! Share your ideas on improving existing features or suggest something new. Vote on ideas you find useful!Make sure to read our <a target="" rel="noopener noreferrer nofollow" class="link" href="https://docs.spacelift.io/product/feature-requests">guidelines</a> before posting 📖

Feature Requests

Hey {name|there}! 👋

Add server-side GPG signature verification when providers are uploaded to Spacelift's registry. Currently, Spacelift accepts providers even if the signature file is corrupted. Validating the signature on upload would catch corruption regardless of whether it happened on the client side or in transit, preventing broken providers from ever being published.

Provider Signature Verification on Upload

hidden

Spacelift

Provider Signature Verification on Upload

Subscribe to post

Subscribe to post