Go implementation for CNAB content trust verification using TUF, Notary, and in-toto
☆31Jul 5, 2023Updated 2 years ago
Alternatives and similar repositories for signy
Users that are interested in signy are comparing it to the libraries listed below
Sorting:
- A curated list of awesome CNAB (Cloud Native Applications Bundles) | https://cnab.io/☆16Dec 17, 2020Updated 5 years ago
- Tool to convert CNAB bundle.json to OCI index☆57Updated this week
- To manage Docker Content Trust and Notary certificates☆13Updated this week
- Helm Chart for deploying GUAC☆18Feb 23, 2026Updated last week
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆33Apr 22, 2025Updated 10 months ago
- Initial discussions on signatures of WebAssembly modules.☆18May 18, 2022Updated 3 years ago
- Prototype in-toto attestation verifier based on ITE-10 and ITE-11 layouts☆18Feb 27, 2026Updated last week
- A Go implementation of CNAB Core 1.0☆69Updated this week
- in-toto Enhancements☆20Feb 17, 2025Updated last year
- Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools☆19Feb 6, 2026Updated last month
- Transparenty Immutable Container Image Tags☆20Jul 5, 2023Updated 2 years ago
- Cryptographic and general-purpose routines for Golang Secure Systems Lab projects at NYU☆28Updated this week
- .NET Standard 2.0 Client Library for CNAB☆11Feb 24, 2019Updated 7 years ago
- Keyless Git signing with cosign!☆11May 12, 2022Updated 3 years ago
- fatt tries to find any purl in your project by looking at predefined fields in the supported packages. These fields describe using a purl…☆11Jan 26, 2026Updated last month
- A template repository for building external data providers for Gatekeeper.☆12Aug 14, 2023Updated 2 years ago
- verify https assets with a public transparency log☆75Oct 28, 2021Updated 4 years ago
- Witness Examples☆12Feb 27, 2024Updated 2 years ago
- A High-Availability distribution of Knative.☆20Mar 20, 2024Updated last year
- ☆14Feb 26, 2024Updated 2 years ago
- Supply Chain Query Tool☆13May 25, 2022Updated 3 years ago
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆86Updated this week
- Demos and resources of the Istio + Gatekeeper talks at IstioCon 2022 and GitOpsCon 2022☆14Sep 4, 2023Updated 2 years ago
- A runbook for the PSF, for TUF key setup and initial signing operations to bootstrap signing for PyPI.☆16Jun 7, 2022Updated 3 years ago
- A plugin to make working with OTel in Spin easy☆13Feb 20, 2026Updated 2 weeks ago
- Tool to scan a container image's rootfs☆12Nov 6, 2023Updated 2 years ago
- CNAB packages to deploy applications from Azure to anywhere at all. Including Azure.☆58Jan 25, 2023Updated 3 years ago
- A rust implementation of in-toto☆35Feb 27, 2026Updated last week
- ☆21Oct 2, 2025Updated 5 months ago
- Cryptographic, immutable, append only software release ledger.☆13Nov 23, 2020Updated 5 years ago
- Container Image Signing & Verifying on Ethereum [Testnet]☆17Mar 15, 2022Updated 3 years ago
- Go implementation of The Update Framework heavily influenced by python-tuf☆14Mar 7, 2024Updated last year
- A minibroker for your minikube!☆88May 6, 2022Updated 3 years ago
- Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.☆33Apr 4, 2023Updated 2 years ago
- ☆16May 15, 2024Updated last year
- Community resources☆13Jun 4, 2021Updated 4 years ago
- A utility for testing Spin applications☆19Feb 24, 2026Updated last week
- Python library for manipulating Cloud Native Application Bundles☆20Apr 20, 2021Updated 4 years ago
- simple validation controller for kubernetes☆11Feb 1, 2024Updated 2 years ago