cosai-oasis / ws1-supply-chainLinks
Repository for CoSAI Workstream 1, Software Supply Chain Security for AI Systems
☆25Updated last week
Alternatives and similar repositories for ws1-supply-chain
Users that are interested in ws1-supply-chain are comparing it to the libraries listed below
Sorting:
- This repository is for administrative documents for the CoSAI OASIS Open Project☆59Updated last week
- Working Group on Artificial Intelligence and Machine Learning (AI/ML) Security☆106Updated last month
- Supply chain security for ML☆188Updated this week
- Cryptography Bill of Materials☆72Updated 6 months ago
- Repository for on-going work as part of the SBOM for AI Tiger Team effort.☆38Updated last month
- A standard API specification for exchanging supply chain artifacts and intelligence☆83Updated 2 months ago
- A dataset of software supply chain compromises. Please help us maintain it!☆130Updated 2 years ago
- Repository for CoSAI workstream 2, Preparing Defenders for a Changing Cybersecurity Landscape☆21Updated 2 weeks ago
- ☆47Updated last week
- ATLAS tactics, techniques, and case studies data☆77Updated 2 weeks ago
- The S2C2F Project is a group working within the OpenSSF's Supply Chain Integrity Working Group formed to further develop and continuously…☆211Updated 3 months ago
- Secure Jupyter Notebooks and Experimentation Environment☆80Updated 6 months ago
- ☆371Updated last year
- A taxonomy of attacks on software supply chains in the form of an attack tree, based on and linked to numerous real-world incidents and o…☆78Updated last month
- Stakeholder-Specific Vulnerability Categorization☆160Updated this week
- ☆101Updated 11 months ago
- One Conference 2024☆111Updated 10 months ago
- AI featured threat modeling and security review action☆45Updated 9 months ago
- This repository contains a SonarQube Plugin that detects cryptographic assets in source code and generates CBOM.☆40Updated this week
- OASIS CSAF TC: Supporting version control for Work Product artifacts developed by members of TC, including prose specifications and secon…☆185Updated this week
- A compilation of Software Supply Chain Security resources including initiatives, standards, regulations, organizations, vendors, tooling,…☆136Updated last year
- StartLeft is an automation tool for generating Threat Models written in the Open Threat Model (OTM) format from a variety of different so…☆52Updated last week
- A comprehensive framework and assessment toolkit for measuring and improving Cloud Native security maturity across 8 critical business fu…☆10Updated 2 months ago
- OWASP Foundation Web Respository☆301Updated last week
- A reading list for software supply-chain security.☆363Updated 2 years ago
- ☆16Updated 2 years ago
- Rapidly identify and mitigate container security vulnerabilities with generative AI.☆149Updated last week
- A repository with examples of CycloneDX BOMs (SBOM, SaaSBOM, OBOM, VEX, etc)☆200Updated 4 months ago
- The Open Threat Modeling Format (OTM) defines a platform independent way to define the threat model of any system.☆175Updated 9 months ago
- Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the …☆187Updated last year