finos / git-proxy
Deploy custom push protections and policies on top of Git
☆99Updated this week
Related projects: ⓘ
- Accelerate financial services firms’ journeys toward open source readiness, by advancing the readiness of participants’ firms and informi…☆35Updated last month
- The FINOS InnerSource SIG is a community of people implementing, or interested in implementing, InnerSource within their financial servic…☆27Updated 5 months ago
- Generate a score for your sbom to understand if it will actually be useful.☆219Updated last month
- Technical Advisory Council☆107Updated this week
- OpenVEX Specification☆125Updated 2 months ago
- Educational Resources for Software Supply Chain Security☆74Updated this week
- FINOS Common Cloud Controls☆27Updated this week
- Enrich SBOMs with data from third party services☆108Updated 3 weeks ago
- A BOM repository server for distributing CycloneDX BOMs☆73Updated 6 months ago
- Compliant Financial Infrastructure accelerates the development, deployment and adoption of cloud services in a way that adheres to common…☆128Updated last week
- Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.☆32Updated last year
- FINOS Community, Project and SIG wide collaboration space☆63Updated last month
- GitHub Action for creating software bill of materials using Syft.☆162Updated this week
- A CLI tool for creating secure by design/default source repos.☆24Updated last month
- TUF repository for Sigstore trust root☆83Updated this week
- A collection of guidelines and resources from Citi's Open Source Program Office☆47Updated 5 months ago
- Evangelizing the mission and work of the OpenSSF and building strong community outreach around end-users, open-source maintainers, and co…☆18Updated 4 months ago
- ☆224Updated 2 weeks ago
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆57Updated this week
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆31Updated 2 months ago
- CLOWarden is a tool that manages access to resources across multiple services☆43Updated this week
- Generate SBOMs with gh CLI☆164Updated 9 months ago
- SBOM Assembler - A tool to edit SBOM or assemble multiple sboms into a single sbom.☆54Updated this week
- SBOM quality score - Quality metrics for your sboms☆161Updated this week
- Software Supply Chain Security Platform☆244Updated this week
- CLOMonitor is a tool that periodically checks open source projects repositories to verify they meet certain project health best practices☆111Updated this week
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆61Updated last year
- A tool to create, transform and attest VEX metadata☆109Updated last week
- Utility that provides an API and CLI to identify licenses and legal terms☆43Updated 3 months ago
- Provide a continuous compliance and assurance approach to DevOps that mutually benefits banks, auditors and regulators whilst acceleratin…☆58Updated 3 months ago