Alternatives and similar repositories for sharedsignals

Users that are interested in sharedsignals are comparing it to the libraries listed below

• secure-systems-lab / dsse
  A specification for signing methods and formats used by Secure Systems Lab projects.
  ☆87Updated last month
• SBOMit / specification
  ☆67Updated last year
• sailpoint-oss / openid-sse-model
  OpenID Shared Signals and Events (SSE) / Continuous Access Evaluation Protocol (CAEP) / Risk Incident Sharing and Coordination (RISC) JSO…
  ☆13Updated last year
• openid / authzen
  Proposed standard for an Authorization API
  ☆89Updated last week
• repository-service-tuf / repository-service-tuf
  Umbrella Repository Service for TUF
  ☆57Updated 2 weeks ago
• umbrellaassociates / opa-spicedb
  Open Policy Agent extension for Authzed SpiceDB
  ☆21Updated 3 weeks ago
• ComplianceAsCode / auditree-framework
  The Auditree framework tool to run compliance control checks as unit tests.
  ☆71Updated last year
• microsoft / scim
  Supply Chain Integrity Model
  ☆105Updated 2 years ago
• kusaridev / spector
  Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks
  ☆33Updated 6 months ago
• ossf / sbom-everywhere
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆105Updated last week
• kusaridev / skootrs
  A CLI tool for creating secure by design/default source repos.
  ☆28Updated last year
• sigstore / root-signing
  TUF repository for Sigstore trust root
  ☆109Updated this week
• omnibor / site
  Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.
  ☆21Updated 9 months ago
• testifysec / witness-run-action
  ☆11Updated last week
• in-toto / community
  in-toto is a framework to secure the software supply chain.
  ☆71Updated 9 months ago
• hexa-org / policy-orchestrator
  Hexa Policy Orchestrator enables you to manage all of your access policies consistently across software providers.
  ☆103Updated 5 months ago
• openvex / spec
  OpenVEX Specification
  ☆160Updated 4 months ago
• Cyclenerd / google-workload-identity-federation
  🔐 Google Cloud Workload Identity Federation Examples and How-To
  ☆12Updated last month
• FIWARE / keycloak-vc-issuer
  Keycloak provider implementation to support SIOP-2 clients and the issuance of VerifiableCredentials through the Account-Console.
  ☆19Updated last year
• omnibor / spec
  Specification for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.
  ☆26Updated 3 months ago
• in-toto / scai-demos
  Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools
  ☆18Updated 3 weeks ago
• microsoft / oss-ssc-framework
  Open Source Software Secure Supply Chain Framework
  ☆236Updated 3 years ago
• ComplianceAsCode / auditree-arboretum
  The Auditree common fetchers, checks and harvest reports library.
  ☆20Updated last year
• ossf / security-insights
  Machine-readable specification for the attestation of security-relevant data.
  ☆63Updated last month
• ossf / great-mfa-project
  The Great Multi-Factor Authentication (MFA) Distribution Project of the Open Source Security Foundation (OpenSSF). We work to distribute …
  ☆54Updated 3 years ago
• CycloneDX / cyclonedx-bom-repo-server
  A BOM repository server for distributing CycloneDX BOMs
  ☆84Updated 4 months ago
• italia / eudi-wallet-it-python
  Python toolchain for building an OpenID4VP RP with a SATOSA backend compliant with the Italian Wallet implementation profile
  ☆23Updated 2 weeks ago
• in-toto / demo
  Securing Alice's, Bob's and Carl's software supply chain using in-toto
  ☆98Updated 2 weeks ago
• oauth-wg / draft-ietf-oauth-attestation-based-client-auth
  ☆16Updated this week
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated 2 years ago