This talk was given at SigstoreCon 2022.
[GitHub OIDC JWT docs](https://docs.github.com/en/actions/deployment/security-hardening-your-deployments/about-security-hardening-with-openid-connect#understanding-the-oidc-token)
[Fulcio: Standardizing CI OIDC token claims](https://github.com/sigstore/fulcio/issues/754)
