Certificate Authority Update for g.codefresh.io December 16th
Scheduled Maintenance Report for Codefresh
The scheduled maintenance has been completed.
Posted Dec 16, 2023 - 12:00 UTC
In progress
Scheduled maintenance is currently in progress. We will provide updates as necessary.
Posted Dec 16, 2023 - 10:01 UTC
We will be undergoing scheduled maintenance during this time.
Posted Nov 29, 2023 - 20:49 UTC
On December 16th 2023, Codefresh will switch from Digicert to Amazon as the Certificate Authority (CA) it uses to issue its public SSL/TLS certificate for g.codefresh.io. For both Codefresh SaaS (g.codefresh.io) and on-premises customers, no action is required on your part.

For Codefresh SaaS customers whose organization manages custom workstation policies for trusted CAs, or otherwise pins public certificates to domains, please ensure the following:
1. Your list of trusted CAs includes the Amazon Trust Services root CAs (these root certificates are included by default on Windows, Mac, and most Linux distributions).
2.You are not pinning the Digicert-issued certificate for g.codfresh.io. Since major browsers such as Firefox and Google Chrome have already removed or deprecated HTTP Public Key Pinning (HPKP), this is usually only possible at the OS level. Certificate pinning is discouraged by major CAs such as Digicert. However, if your organization must perform certificate pinning, ensure you are only pinning the public key of the Amazon Trust Services root CAs to g.codefresh.io.

If you suspect that your organization has strict rules on public certificates, use the following link to verify a successful HTTPS connection secured by an Amazon-issued certificate: https://valid.rootca1.demo.amazontrust.com/
Posted Nov 29, 2023 - 20:45 UTC
This scheduled maintenance affected: Codefresh Systems (codefresh.io, Codefresh API).