Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
☆22May 4, 2023Updated 2 years ago
Alternatives and similar repositories for self-attestation
Users that are interested in self-attestation are comparing it to the libraries listed below
Sorting:
- A place to systematically store software bill of materials (SBOM) documents.☆50Jun 1, 2023Updated 2 years ago
- This is a POC repository showing how a Kubernetes Admission Controller can be made irrelevant when verifying container image signatures☆12Dec 21, 2022Updated 3 years ago
- OSCAL SSP content for technologies shipped by Red Hat☆16Mar 2, 2023Updated 3 years ago
- Build the Linux kernel into OCI images, suitable for Edera products.☆21Feb 9, 2026Updated 3 weeks ago
- iximiuz Labs roadmap, feature requests, and bug reports☆39Feb 23, 2026Updated last week
- ☆15Mar 9, 2023Updated 2 years ago
- Public repository to provide guidance and examples for people to start learning IaC. This repository also contains some open-hack style l…☆23Jun 14, 2023Updated 2 years ago
- TRADES Tool☆18Jan 1, 2025Updated last year
- Simple tool that allows you to detect imposter commits in GitHub Actions workflows.☆26Dec 17, 2024Updated last year
- Transparenty Immutable Container Image Tags☆20Jul 5, 2023Updated 2 years ago
- .NET library to consume and produce CycloneDX Software Bill of Materials (SBOM)☆26Feb 10, 2026Updated 2 weeks ago
- ☆30Jan 29, 2026Updated last month
- Proof of Concept exploit for Kubernetes CVE-2020-8559☆20Jul 22, 2020Updated 5 years ago
- A VS Code/Cursor extension capable of performing realtime security monitoring from inside the IDE☆75Feb 13, 2026Updated 2 weeks ago
- Nextdoor's Cloud Security Posture Management (CSPM) Evaluation Matrix☆59Sep 7, 2023Updated 2 years ago
- Sneefer is a PoC project showing how to filter out irrelevent vulnerabilities from container image vulnerability scan results. It is base…☆26Sep 26, 2023Updated 2 years ago
- TUF repository for Sigstore trust root☆118Updated this week
- Source for the SPIFFE and SPIRE project websites. Hosted by the Cloud Native Computing Foundation☆31Feb 22, 2026Updated last week
- Go implementation for CNAB content trust verification using TUF, Notary, and in-toto☆31Jul 5, 2023Updated 2 years ago
- Validate the SPDX SBOM against NTIA, CISA, and other minimum element requirements.☆81Feb 20, 2026Updated last week
- Crane POAM Automation Tool (C-PAT™)☆15Updated this week
- Specification to describe the minimum information standard for online community data. Guidelines for describing data about online communi…☆11Sep 19, 2016Updated 9 years ago
- A count down clock to embed in reveal.js presentations.☆11Jan 6, 2023Updated 3 years ago
- A modular PowerShell-based application packaging framework for standardized, parameter-driven and deployment-system-independent software …☆12Oct 29, 2025Updated 4 months ago
- Log monitor for Rekor to verify immutability and monitor entries☆47Feb 23, 2026Updated last week
- Integrates Spiffe and Vault to have secretless authentication☆97Updated this week
- Class tools for overview of MITRE ATT&CK®☆42Aug 6, 2024Updated last year
- ☆13Nov 18, 2025Updated 3 months ago
- Get Group Policy information from ADMX files.☆11Jan 22, 2021Updated 5 years ago
- Website for The State of FOSS in India report.☆10Aug 20, 2021Updated 4 years ago
- ☆16May 17, 2018Updated 7 years ago
- Integrated model to calculate the effects of resilient foods in catastrophic events☆11May 20, 2025Updated 9 months ago
- Workshop - Windows Container☆11Dec 20, 2017Updated 8 years ago
- Raspberry Pi 4 Image☆12Oct 25, 2024Updated last year
- Tool to start a python http server in a simple way☆10Mar 30, 2022Updated 3 years ago
- Syllabus for "Anthropology of Silicon Valley(s)" course☆16Apr 24, 2017Updated 8 years ago
- Open Source License Compliance Checklists☆11Oct 18, 2024Updated last year
- This example demonstrates how to write high availability controller with GO.☆10Feb 24, 2023Updated 3 years ago
- Code for CorvOS - A Linux distro for schools☆12May 13, 2019Updated 6 years ago