github-early-access/generate-build-provenance external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

github-early-access/generate-build-provenance

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/github-early-access/generate-build-provenance)

Close

github-early-access / generate-build-provenanceView on GitHubMore

• External links
• Readme badge

Publish a signed build provenance from your GitHub Actions workflow

☆62May 21, 2024Updated last year

Alternatives and similar repositories for generate-build-provenance

Users that are interested in generate-build-provenance are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• evryfs / sbom-dependency-submission-action

  View on GitHub
  Submit SBOMs to GitHub's dependency submission API
  ☆18Dec 4, 2025Updated 4 months ago
• mlieberman85 / scq

  View on GitHub
  Supply Chain Query Tool
  ☆13May 25, 2022Updated 3 years ago
• in-toto / in-toto-rs

  View on GitHub
  A rust implementation of in-toto
  ☆36Feb 27, 2026Updated last month
• identity-box / identity-box

  View on GitHub
  Monorepo for Identity Box
  ☆20Aug 11, 2024Updated last year
• actions / attest-build-provenance

  View on GitHub
  Action for generating build provenance attestations for workflow artifacts
  ☆924Mar 4, 2026Updated last month
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• chainguard-dev / bomshell

  View on GitHub
  An SBOM query language and associated utilities
  ☆56Jan 22, 2024Updated 2 years ago
• chainguard-images / actions

  View on GitHub
  GitHub actions for the chainguard-images
  ☆21Updated this week
• kusaridev / spector

  View on GitHub
  Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks
  ☆33Apr 22, 2025Updated 11 months ago
• intuit / innersource-scanner

  View on GitHub
  A java api and command line tool for scanning, reporting and fixing a git repository's InnerSource Readiness based on a supplied specific…
  ☆20Sep 8, 2023Updated 2 years ago
• in-toto / archivista

  View on GitHub
  Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…
  ☆108Apr 4, 2026Updated last week
• snyk / parlay

  View on GitHub
  Enrich SBOMs with data from third party services
  ☆224Updated this week
• sigstore / gh-action-sigstore-python

  View on GitHub
  A GitHub Action for sigstore-python
  ☆65Updated this week
• in-toto / scai-demos

  View on GitHub
  Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools
  ☆19Apr 3, 2026Updated last week
• actions / versions-package-tools

  View on GitHub
  Libs and tools used to build all *-version tools for GitHub Actions
  ☆31Mar 2, 2026Updated last month
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• philips-labs / aws-ecr-scanning-slack-notifications

  View on GitHub
  AWS ECR scanning slack notifications
  ☆13Jul 19, 2023Updated 2 years ago
• qinweizhang / MRI_music_pub

  View on GitHub
  playing music using the MRI gradient system
  ☆15Oct 4, 2020Updated 5 years ago
• ossf / scorecard-action

  View on GitHub
  Official GitHub Action for OpenSSF Scorecard.
  ☆370Updated this week
• cnabio / signy

  View on GitHub
  Go implementation for CNAB content trust verification using TUF, Notary, and in-toto
  ☆31Jul 5, 2023Updated 2 years ago
• oxidecomputer / amd-apcb

  View on GitHub
  AMD Generic Encapsulated Software Architecture Platform Security Processor Configuration Block manipulation library
  ☆16Dec 18, 2025Updated 3 months ago
• protobom / protobom

  View on GitHub
  A universal SBOM representation in protocol buffers
  ☆322Apr 6, 2026Updated last week
• UQ-PAC / BASIL

  View on GitHub
  The Basil pipeline for concurrent information flow analysis in AArch64 binaries.
  ☆18Updated this week
• pyscript / polyplug

  View on GitHub
  A framework for linking the DOM and DOM based events with scripting languages compiled to WASM. Part of the PyScript project.
  ☆12Oct 1, 2024Updated last year
• omnibor / site

  View on GitHub
  Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.
  ☆21Jan 27, 2025Updated last year
• Deploy open-source AI quickly and easily - Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• di / id

  View on GitHub
  A tool for generating OIDC identities
  ☆14Apr 2, 2026Updated last week
• jelmer / janitor

  View on GitHub
  Platform for making incremental changes to code in VCSes
  ☆13Updated this week
• davidlatwe / rez-deliver

  View on GitHub
  Rez CLI/GUI tool for installing packages from developer package repositories.
  ☆12Nov 25, 2021Updated 4 years ago
• philips-software / blackduck-report-action

  View on GitHub
  GitHub action to produce a SBOM report from a given Black Duck project
  ☆12Feb 5, 2026Updated 2 months ago
• github-developer / example-setup-gh

  View on GitHub
  An example action, demonstrating how CLI authors may develop actions that allow setup their of CLIs on GitHub's hosted runners, using Jav…
  ☆16Feb 26, 2025Updated last year
• slsa-framework / slsa-verifier

  View on GitHub
  Verify provenance from SLSA compliant builders
  ☆319Mar 9, 2026Updated last month
• mithro / x11ssh-f-pcb

  View on GitHub
  Recreated gerbers for the Supermicro X11SSH-F motherboard.
  ☆16Aug 2, 2023Updated 2 years ago
• kusaridev / skootrs

  View on GitHub
  A CLI tool for creating secure by design/default source repos.
  ☆28Jul 29, 2024Updated last year
• sigstore / fulcio

  View on GitHub
  Sigstore OIDC PKI
  ☆824Updated this week
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• eclipse-csi / otterdog

  View on GitHub
  OtterDog is a tool to manage GitHub organizations at scale using a configuration as code approach. It is actively used by the Eclipse Fou…
  ☆47Updated this week
• w3c / did-rubric

  View on GitHub
  W3C Decentralized Characteristics Rubric v1.0
  ☆15Mar 11, 2026Updated last month
• tempoz / cosmo_cc_bazel_toolchain

  View on GitHub
  Bazel toolchain that is backed by cosmopolitan
  ☆16Feb 5, 2024Updated 2 years ago
• sigstore / cosign-installer

  View on GitHub
  Cosign Github Action
  ☆195Mar 30, 2026Updated 2 weeks ago
• docker / setup-docker-action

  View on GitHub
  GitHub Action to set up (download and install) Docker CE
  ☆75Updated this week
• conda / conda-prefix-replacement

  View on GitHub
  CPR resuscitates packages in new locations
  ☆15Aug 26, 2025Updated 7 months ago
• secure-systems-lab / dsse

  View on GitHub
  A specification for signing methods and formats used by Secure Systems Lab projects.
  ☆96Nov 10, 2025Updated 5 months ago