Alternatives and similar repositories for attest

Users that are interested in attest are comparing it to the libraries listed below

• actions / attest-sbom
  Action for generating SBOM attestations for workflow artifacts
  ☆31Updated last week
• sigstore / protobuf-specs
  Sigstore's Protocol Buffer specifications
  ☆32Updated this week
• actions / publish-immutable-action
  A GitHub Action used for publishing an Action to ghcr.io as an OCI container.
  ☆86Updated 6 months ago
• github-early-access / generate-build-provenance
  Publish a signed build provenance from your GitHub Actions workflow
  ☆63Updated last year
• github / actions-oidc-debugger
  An Action for printing OIDC claims in GitHub Actions.
  ☆94Updated 2 months ago
• actions / publish-action
  ☆50Updated 2 weeks ago
• github / dependabot-action
  Runs Dependabot Updates via GitHub Actions.
  ☆100Updated this week
• github / stale-repos
  Find stale repositories in a GitHub organization.
  ☆182Updated this week
• docker / buildkit-syft-scanner
  BuildKit Syft scanner
  ☆31Updated last week
• sigstore / cosign-installer
  Cosign Github Action
  ☆148Updated 2 weeks ago
• sigstore / sigstore-go
  Go library for Sigstore signing and verification
  ☆68Updated last week
• ossf / scorecard-monitor
  Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts
  ☆35Updated 2 weeks ago
• sigstore / rekor-search-ui
  Search Rekor for entries
  ☆34Updated 2 months ago
• github / go-spdx
  Golang implementation of a checker for determining if an SPDX ID satisfies an SPDX Expression.
  ☆37Updated this week
• codecov / codecov-cli
  Codecov's Command Line Interface. Used for uploading to Codecov in your CI, Test Labelling, Local Upload, and more
  ☆70Updated this week
• actions / runner-container-hooks
  Runner Container Hooks for GitHub Actions
  ☆95Updated last month
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆307Updated this week
• github / dependency-submission-toolkit
  A TypeScript library for creating dependency snapshots.
  ☆48Updated last week
• sigstore / rekor-monitor
  Log monitor for Rekor to verify immutability and monitor entries
  ☆34Updated last week
• fossas / fossa-action
  Find license compliance and security issues in your applications with FOSSA and GitHub Actions.
  ☆53Updated this week
• crazy-max / ghaction-github-runtime
  GitHub Action to expose GitHub runtime to the workflow
  ☆72Updated 2 months ago
• oras-project / setup-oras
  Set up your GitHub Actions workflow with a specific version of ORAS
  ☆22Updated last week
• actions / partner-runner-images
  About GitHub Actions runner images provided by 3rd parties
  ☆130Updated last month
• codespell-project / actions-codespell
  ☆81Updated 3 months ago
• slsa-framework / example-package
  ☆19Updated this week
• github / artifact-attestations-helm-charts
  Helm charts for verifying artifact attestations in Kubernetes
  ☆12Updated 3 weeks ago
• 1Password / check-signed-commits-action
  GitHub Action to check PRs for signed commits
  ☆54Updated 10 months ago
• containerbase / base
  The containerbase project's base image source
  ☆43Updated this week
• github / automatic-contrib-prs
  Automatically open a pull request for repositories that have no CONTRIBUTING.md file
  ☆35Updated last month
• github / ossar-action
  Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).
  ☆96Updated last year