github / artifact-attestations-helm-chartsLinks
Helm charts for verifying artifact attestations in Kubernetes
☆14Updated last week
Alternatives and similar repositories for artifact-attestations-helm-charts
Users that are interested in artifact-attestations-helm-charts are comparing it to the libraries listed below
Sorting:
- ☆57Updated 3 years ago
- Simple tool that allows you to detect imposter commits in GitHub Actions workflows.☆23Updated 6 months ago
- ☆23Updated 2 years ago
- Build and deploy Go applications with Terraform☆28Updated this week
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆63Updated this week
- Sigstore's Protocol Buffer specifications☆33Updated last week
- Log monitor for Rekor to verify immutability and monitor entries☆36Updated this week
- SLSA level 3 action☆11Updated last year
- Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.☆66Updated this week
- ☆74Updated last month
- Kilt is a project that defines how to inject foreign apps into containers☆13Updated last year
- Repository for the Enterprise Certificate Proxy project.☆25Updated 3 months ago
- Helm charts for sigstore project☆76Updated last week
- Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.☆43Updated last year
- 🔍 Rekor transparency log monitoring and alerting☆27Updated last year
- Proof-of-concept SLSA provenance generator for GitHub Actions☆100Updated 2 years ago
- Example goreleaser + github actions config with keyless signing, SBOM generation, and attestations☆58Updated last week
- An SBOM query language and associated utilities☆54Updated last year
- Search Rekor for entries☆34Updated 2 months ago
- ☆24Updated last year
- A Kubewarden Policy that detects usage of deprecated and dropped Kubernetes resources☆16Updated this week
- Go library for Sigstore signing and verification☆18Updated last year
- Transparenty Immutable Container Image Tags☆20Updated last year
- Sigstore user stories☆30Updated last year
- native go library for installation and management of apk packages☆29Updated last year
- Terraform provider for Sigstore Cosign☆10Updated this week
- A CLI used to work with the Wolfi OSS project☆62Updated this week
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Updated 2 weeks ago
- Go implementation of witness☆37Updated this week