Alternatives and similar repositories for artifact-server

Users that are interested in artifact-server are comparing it to the libraries listed below

• github-early-access / generate-build-provenance
  Publish a signed build provenance from your GitHub Actions workflow
  ☆63Updated last year
• sigstore / root-signing
  TUF repository for Sigstore trust root
  ☆107Updated this week
• actions / attest
  Action for generating attestations for workflow artifacts
  ☆58Updated this week
• chainguard-dev / crow-registry
  ☆24Updated last year
• kusaridev / spector
  Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks
  ☆32Updated 4 months ago
• docker / buildkit-syft-scanner
  BuildKit Syft scanner
  ☆35Updated this week
• anthonyharrison / sbomaudit
  Report on quality of SBOM contents
  ☆19Updated 8 months ago
• ossf / great-mfa-project
  The Great Multi-Factor Authentication (MFA) Distribution Project of the Open Source Security Foundation (OpenSSF). We work to distribute …
  ☆54Updated 3 years ago
• goreleaser / example-supply-chain
  Example goreleaser + github actions config with keyless signing, SBOM generation, and attestations
  ☆58Updated last week
• ovh / distronaut
  Find distribution installers all across the web !
  ☆13Updated 11 months ago
• anthonyharrison / distro2SBOM
  Generates SBOM files from system packaging information
  ☆30Updated last month
• secure-systems-lab / dsse
  A specification for signing methods and formats used by Secure Systems Lab projects.
  ☆83Updated 11 months ago
• caniszczyk / rugpulls.dev
  ☆34Updated last year
• spdx / spdx-3-model
  The model for the information captured in SPDX version 3 standard.
  ☆92Updated last week
• system-transparency / system-transparency
  Mirror only. Official repository at https://git.glasklar.is/system-transparency/core/system-transparency
  ☆89Updated 2 months ago
• openvex / spec
  OpenVEX Specification
  ☆156Updated 2 months ago
• sigstore / sigstore-go
  Go library for Sigstore signing and verification
  ☆80Updated this week
• philips-software / SPDXMerge
  SPDX Merge tool
  ☆47Updated 4 months ago
• sigstore / rekor-monitor
  Log monitor for Rekor to verify immutability and monitor entries
  ☆38Updated this week
• osbuild / images
  Image builder image definition library
  ☆33Updated last week
• sigstore / docs
  Sigstore documentation
  ☆99Updated 3 months ago
• twiss / source-code-transparency
  Source Code Transparency
  ☆11Updated last year
• sigstore / cosign-installer
  Cosign Github Action
  ☆154Updated last week
• slsa-framework / slsa-verifier
  Verify provenance from SLSA compliant builders
  ☆281Updated last month
• containers / initoverlayfs
  ☆41Updated last year
• seedwing-io / seedwing-policy
  A functional type system for policy inspection, audit and enforcement.
  ☆13Updated 2 years ago
• containers / selinuxd
  A daemon that manages SELinux policies on a filesystem
  ☆36Updated 3 months ago
• orcwg / cra-hub
  Everything you ever wanted to know about the CRA and its implementation
  ☆125Updated 2 weeks ago
• theupdateframework / tuf-on-ci
  A TUF repository and signing tool
  ☆39Updated this week
• ossf / ossf-landscape
  ☆30Updated last week