Alternatives and similar repositories for generate-build-provenance

Users that are interested in generate-build-provenance are comparing it to the libraries listed below

• actions / attest
  Action for generating attestations for workflow artifacts
  ☆61Updated this week
• github / actions-oidc-debugger
  An Action for printing OIDC claims in GitHub Actions.
  ☆117Updated 3 months ago
• sigstore / sigstore-js
  Code-signing for npm packages
  ☆175Updated this week
• github / stale-repos
  Find stale repositories in a GitHub organization.
  ☆191Updated last week
• github-community-projects / private-mirrors
  A GitHub App that allows you to contribute upstream using private mirrors of public projects
  ☆175Updated last week
• crazy-max / ghaction-github-runtime
  GitHub Action to expose GitHub runtime to the workflow
  ☆83Updated this week
• github / dependabot-action
  Runs Dependabot Updates via GitHub Actions.
  ☆112Updated last week
• ossf / scorecard-action
  Official GitHub Action for OpenSSF Scorecard.
  ☆343Updated last week
• actions / partner-runner-images
  About GitHub Actions runner images provided by 3rd parties
  ☆206Updated 2 weeks ago
• github / evergreen
  GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…
  ☆217Updated last week
• actions / publish-action
  ☆55Updated last month
• sigstore / cosign-installer
  Cosign Github Action
  ☆174Updated this week
• docker / bake-action
  GitHub Action to use Docker Buildx Bake as a high-level build command
  ☆277Updated this week
• actions / runner-container-hooks
  Runner Container Hooks for GitHub Actions
  ☆122Updated this week
• sigstore / sigstore-go
  Go library for Sigstore signing and verification
  ☆80Updated last week
• step-security / secure-repo
  Orchestrate GitHub Actions Security
  ☆302Updated last week
• sigstore / docs
  Sigstore documentation
  ☆114Updated last week
• actions / publish-immutable-action
  A GitHub Action used for publishing an Action to ghcr.io as an OCI container.
  ☆112Updated 4 months ago
• GitHubSecurityLab / actions-permissions
  GitHub token permissions Monitor and Advisor actions
  ☆347Updated last month
• slsa-framework / slsa-verifier
  Verify provenance from SLSA compliant builders
  ☆300Updated last month
• dependabot / cli
  A tool for testing and debugging Dependabot update jobs.
  ☆371Updated last week
• fossas / fossa-action
  Find license compliance and security issues in your applications with FOSSA and GitHub Actions.
  ☆63Updated last week
• github / contributors
  GitHub Action that given an organization or repository, produces information about the contributors over the specified time period.
  ☆134Updated last week
• github / dependency-submission-toolkit
  A TypeScript library for creating dependency snapshots.
  ☆56Updated last month
• github / combine-prs
  GitHub Action to combine multiple PRs into a single one
  ☆139Updated 9 months ago
• slsa-framework / slsa-github-generator
  Language-agnostic SLSA provenance generation for Github Actions
  ☆531Updated 2 months ago
• anchore / sbom-action
  GitHub Action for creating software bill of materials using Syft.
  ☆213Updated 2 weeks ago
• actions / go-dependency-submission
  Calculates dependencies for a Go build-target and submits the list to the Dependency Submission API
  ☆74Updated last month
• actions / gh-actions-cache
  A GitHub (gh) CLI extension to manage the GitHub Actions caches being used in a GitHub repository.
  ☆323Updated last year
• docker / buildkit-syft-scanner
  BuildKit Syft scanner
  ☆39Updated last week