actions / attest

Related projects ⓘ

Alternatives and complementary repositories for attest

• actions / publish-immutable-action
  A GitHub Action used for publishing an Action to ghcr.io as an OCI container.
  ☆36Updated last week
• docker / buildkit-syft-scanner
  BuildKit Syft scanner
  ☆26Updated 2 months ago
• actions / partner-runner-images
  About GitHub Actions runner images provided by 3rd parties
  ☆64Updated 4 months ago
• sigstore / protobuf-specs
  Protocol Buffer specifications
  ☆23Updated this week
• actions / attest-sbom
  Action for generating SBOM attestations for workflow artifacts
  ☆19Updated this week
• github-early-access / generate-build-provenance
  Publish a signed build provenance from your GitHub Actions workflow
  ☆63Updated 6 months ago
• github / actions-oidc-debugger
  An Action for printing OIDC claims in GitHub Actions.
  ☆76Updated 3 months ago
• fossas / fossa-action
  Find license compliance and security issues in your applications with FOSSA and GitHub Actions.
  ☆46Updated last month
• containerbase / base
  The containerbase project's base image source
  ☆35Updated this week
• 1Password / check-signed-commits-action
  GitHub Action to check PRs for signed commits
  ☆45Updated 3 months ago
• sigstore / cosign-installer
  Cosign Github Action
  ☆126Updated 3 weeks ago
• github / ossar-action
  Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).
  ☆95Updated 7 months ago
• docker / go-imageinspect
  ☆15Updated 5 months ago
• github / dependency-submission-toolkit
  A TypeScript library for creating dependency snapshots.
  ☆46Updated last month
• actions / go-dependency-submission
  Calculates dependencies for a Go build-target and submits the list to the Dependency Submission API
  ☆52Updated 4 months ago
• chainguard-dev / hakn
  A High-Availability distribution of Knative.
  ☆20Updated 8 months ago
• sigstore / friends
  Sigstore user stories
  ☆29Updated last year
• renovatebot / docker-renovate-full
  Repo for building the renovate/renovate:full image
  ☆40Updated 9 months ago
• actions / publish-action
  ☆42Updated 2 months ago
• sigstore / rekor-monitor
  Log monitor for Rekor to verify immutability and monitor entries
  ☆26Updated this week
• chainguard-dev / crow-registry
  ☆24Updated last year
• sigstore / sigstore-go
  Go library for Sigstore signing and verification
  ☆48Updated this week
• oras-project / setup-oras
  Set up your GitHub Actions workflow with a specific version of ORAS
  ☆15Updated this week
• distribution / reference
  Go module implementing general types to represent any way of referencing images within distribution
  ☆32Updated 4 months ago
• github / go-spdx
  Golang implementation of a checker for determining if an SPDX ID satisfies an SPDX Expression.
  ☆31Updated this week
• opentofu / registry-ui
  Powering the OpenTofu Registry Search (beta)
  ☆12Updated this week
• advanced-security / sbom-generator-action
  ☆15Updated 8 months ago
• reproducible-containers / repro-pkg-cache
  Dockerfile examples for reproducing package cache (e.g., `/etc/apk/cache`)
  ☆12Updated last year
• octo-sts / action
  ☆30Updated 3 weeks ago
• step-security / agent
  Purpose-built security agent for hosted runners
  ☆29Updated 3 months ago