actions / attestLinks
Action for generating attestations for workflow artifacts
☆50Updated last week
Alternatives and similar repositories for attest
Users that are interested in attest are comparing it to the libraries listed below
Sorting:
- Action for generating SBOM attestations for workflow artifacts☆31Updated last week
- Sigstore's Protocol Buffer specifications☆32Updated this week
- A GitHub Action used for publishing an Action to ghcr.io as an OCI container.☆86Updated 6 months ago
- Publish a signed build provenance from your GitHub Actions workflow☆63Updated last year
- An Action for printing OIDC claims in GitHub Actions.☆94Updated 2 months ago
- ☆50Updated 2 weeks ago
- Runs Dependabot Updates via GitHub Actions.☆100Updated this week
- Find stale repositories in a GitHub organization.☆182Updated this week
- BuildKit Syft scanner☆31Updated last week
- Cosign Github Action☆148Updated 2 weeks ago
- Go library for Sigstore signing and verification☆68Updated last week
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆35Updated 2 weeks ago
- Search Rekor for entries☆34Updated 2 months ago
- Golang implementation of a checker for determining if an SPDX ID satisfies an SPDX Expression.☆37Updated this week
- Codecov's Command Line Interface. Used for uploading to Codecov in your CI, Test Labelling, Local Upload, and more☆70Updated this week
- Runner Container Hooks for GitHub Actions☆95Updated last month
- Official GitHub Action for OpenSSF Scorecard.☆307Updated this week
- A TypeScript library for creating dependency snapshots.☆48Updated last week
- Log monitor for Rekor to verify immutability and monitor entries☆34Updated last week
- Find license compliance and security issues in your applications with FOSSA and GitHub Actions.☆53Updated this week
- GitHub Action to expose GitHub runtime to the workflow☆72Updated 2 months ago
- Set up your GitHub Actions workflow with a specific version of ORAS☆22Updated last week
- About GitHub Actions runner images provided by 3rd parties☆130Updated last month
- ☆81Updated 3 months ago
- ☆19Updated this week
- Helm charts for verifying artifact attestations in Kubernetes☆12Updated 3 weeks ago
- GitHub Action to check PRs for signed commits☆54Updated 10 months ago
- The containerbase project's base image source☆43Updated this week
- Automatically open a pull request for repositories that have no CONTRIBUTING.md file☆35Updated last month
- Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).☆96Updated last year