Go implementation for CNAB content trust verification using TUF, Notary, and in-toto
☆31Jul 5, 2023Updated 2 years ago
Alternatives and similar repositories for signy
Users that are interested in signy are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tool to convert CNAB bundle.json to OCI index☆57Apr 26, 2026Updated last week
- A curated list of awesome CNAB (Cloud Native Applications Bundles) | https://cnab.io/☆16Dec 17, 2020Updated 5 years ago
- sget is a keyless safe script retrieval and execution tool☆18Feb 7, 2022Updated 4 years ago
- A Go implementation of CNAB Core 1.0☆69Updated this week
- To manage Docker Content Trust and Notary certificates☆13Updated this week
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- A runbook for the PSF, for TUF key setup and initial signing operations to bootstrap signing for PyPI.☆16Mar 20, 2026Updated last month
- Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools☆19Apr 28, 2026Updated last week
- Cryptographic and general-purpose routines for Secure Systems Lab projects at NYU☆52Updated this week
- verify https assets with a public transparency log☆75Oct 28, 2021Updated 4 years ago
- in-toto Enhancements☆20Feb 17, 2025Updated last year
- fatt tries to find any purl in your project by looking at predefined fields in the supported packages. These fields describe using a purl�…☆11Apr 14, 2026Updated 3 weeks ago
- Transparenty Immutable Container Image Tags☆20Jul 5, 2023Updated 2 years ago
- CNAB packages to deploy applications from Azure to anywhere at all. Including Azure.☆58Jan 25, 2023Updated 3 years ago
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆33Apr 22, 2025Updated last year
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- Prototype in-toto attestation verifier based on ITE-10 and ITE-11 layouts☆19Apr 28, 2026Updated last week
- Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.☆22May 4, 2023Updated 3 years ago
- Friends of in-toto! A place to record integrations and adoptions of the in-toto specification.☆21Apr 6, 2026Updated last month
- ☆11Nov 11, 2022Updated 3 years ago
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆87Apr 24, 2026Updated last week
- Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.☆33Apr 4, 2023Updated 3 years ago
- ☆45Apr 23, 2026Updated last week
- Supply Chain Query Tool☆13May 25, 2022Updated 3 years ago
- Witness Examples☆12Feb 27, 2024Updated 2 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Helm Chart for deploying GUAC☆18Mar 9, 2026Updated last month
- Community resources☆13Jun 4, 2021Updated 4 years ago
- A TUF repository and signing tool☆44Updated this week
- A minibroker for your minikube!☆88May 6, 2022Updated 4 years ago
- Cross tooling and interoperability specifications☆175May 20, 2025Updated 11 months ago
- The Archive Framework☆22Apr 28, 2026Updated last week
- A plugin to make working with OTel in Spin easy☆13Feb 20, 2026Updated 2 months ago
- kedahttp implements a prototype of auto-scaling containers using Kubernetes and KEDA☆15Jan 5, 2021Updated 5 years ago
- A template repository for building external data providers for Gatekeeper.☆12Aug 14, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- GitHub actions for the chainguard-images☆21Apr 27, 2026Updated last week
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆109Updated this week
- Container Image Signing & Verifying on Ethereum [Testnet]☆17Mar 15, 2022Updated 4 years ago
- 🐳 🐸 When Docker meets with integration/acceptance tests to make you see everything in green☆17Nov 22, 2017Updated 8 years ago
- Jupyterhub backed by carina!☆15Jan 22, 2016Updated 10 years ago
- Tool to scan a container image's rootfs☆12Nov 6, 2023Updated 2 years ago
- Keyless Git signing with cosign!☆11May 12, 2022Updated 3 years ago