From 6462b710f5448c21af26c0986864c52e23cf9aba Mon Sep 17 00:00:00 2001
From: Matheus Pimenta <matheuscscp@gmail.com>
Date: Thu, 5 Feb 2026 18:19:24 +0000
Subject: [PATCH] Add mention of e2e-tested proof of concept

Signed-off-by: Matheus Pimenta <matheuscscp@gmail.com>
---
 rfcs/xxxx-vendor-agnostic-short-lived-credentials/README.md | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/rfcs/xxxx-vendor-agnostic-short-lived-credentials/README.md b/rfcs/xxxx-vendor-agnostic-short-lived-credentials/README.md
index 528897dc..da067f50 100644
--- a/rfcs/xxxx-vendor-agnostic-short-lived-credentials/README.md
+++ b/rfcs/xxxx-vendor-agnostic-short-lived-credentials/README.md
@@ -644,6 +644,12 @@ creation of the credential will be included in the cache key.
   private key referenced by `--spiffe-secret-name`. This key should be
   treated with the same level of care as the Kubernetes CA key.
 
+### Proof of Concept
+
+A proof of concept for the `ServiceAccountToken` credential type was tested
+end-to-end and validated with two CNCF container registry projects:
+[Harbor](https://goharbor.io/) and [Zot](https://zotregistry.dev/).
+
 ## Implementation History
 
 <!--