anchore / chronicle
a fast changelog generator sourced from PRs and Issues
☆59Updated last week
Alternatives and similar repositories for chronicle
Users that are interested in chronicle are comparing it to the libraries listed below
Sorting:
- Compare vulnerability scanners results (to make them better!)☆16Updated last month
- An SBOM query language and associated utilities☆54Updated last year
- Manage a directory of binaries without a package manager☆30Updated this week
- ☆48Updated last week
- ☆42Updated 7 months ago
- A CLI used to work with the Wolfi OSS project☆61Updated this week
- Darkfiles finds orphaned files in container images and makes them to bad deeds☆42Updated 2 years ago
- SPDX Merge tool☆44Updated last month
- Throw a tag at it and it comes back with a checksum.☆136Updated this week
- Dynamic GitHub Actions from Wolfi packages☆43Updated 2 weeks ago
- A collection of reusable Github Actions workflows.☆132Updated this week
- ☆34Updated last year
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆96Updated last week
- A sweet little formatter for YAML☆25Updated this week
- Sigstore's Protocol Buffer specifications☆32Updated this week
- ☆41Updated 2 years ago
- (d)ocker(f)ile (c)onverter: CLI to convert Dockerfiles to use Chainguard Images and APKs in FROM and RUN lines etc.☆61Updated last week
- go library for processing container images and simulating a squash filesystem☆99Updated this week
- Format agnostic SBOM tooling☆106Updated this week
- Automate copyright headers and license files at scale☆93Updated last week
- Various tools, images, etc. to support the Wolfi OSS project☆21Updated this week
- Go library for Sigstore signing and verification☆67Updated this week
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆94Updated this week
- ☆29Updated last week
- jq for .tf files (Terraform/OpenTofu)☆27Updated last year
- Example goreleaser + github actions config with keyless signing, SBOM generation, and attestations☆57Updated 2 weeks ago
- CLOWarden is a tool that manages access to resources across multiple services☆51Updated last week
- A draft standard for communicating a cryptographic record of build inputs for software artifacts.☆24Updated last month
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆191Updated this week
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆62Updated last week