anchore / chronicle
a fast changelog generator sourced from PRs and Issues
☆54Updated last week
Alternatives and similar repositories for chronicle:
Users that are interested in chronicle are comparing it to the libraries listed below
- Compare vulnerability scanners results (to make them better!)☆16Updated 2 weeks ago
- Manage a directory of binaries without a package manager☆27Updated this week
- ☆40Updated 4 months ago
- An SBOM query language and associated utilities☆54Updated last year
- Throw a tag at it and it comes back with a checksum.☆114Updated this week
- vexctl is a tool to attest VEX impact statements☆44Updated last year
- ☆43Updated this week
- A CLI used to work with the Wolfi OSS project☆60Updated this week
- Darkfiles finds orphaned files in container images and makes them to bad deeds☆41Updated last year
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆80Updated this week
- ☆33Updated 10 months ago
- Format agnostic SBOM tooling☆102Updated this week
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆87Updated this week
- SPDX Merge tool☆41Updated 2 weeks ago
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆171Updated this week
- jq for .tf files (Terraform/OpenTofu)☆26Updated 11 months ago
- A collection of reusable Github Actions workflows.☆128Updated this week
- Dynamic GitHub Actions from Wolfi packages☆43Updated 10 months ago
- Example goreleaser + github actions config with keyless signing, SBOM generation, and attestations☆55Updated 3 weeks ago
- A tool to create, transform and attest VEX metadata☆132Updated this week
- go library for processing container images and simulating a squash filesystem☆89Updated this week
- SBOM Grep - search through SBOMs☆21Updated last month
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆61Updated last year
- ☆41Updated 2 years ago
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆60Updated this week
- Sigstore user stories☆29Updated last year
- TACOS framework structural details☆20Updated last year
- Grype vulnerability check plugin for Visual Studio Code☆22Updated 3 months ago
- Various tools, images, etc. to support the Wolfi OSS project☆21Updated 3 weeks ago
- Protocol Buffer specifications☆27Updated this week