Securing open-source package ecosystems by originating, validating, and augmenting build attestations.
☆689Apr 16, 2026Updated this week
Alternatives and similar repositories for oss-rebuild
Users that are interested in oss-rebuild are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆22Mar 13, 2025Updated last year
- OSV-SCALIBR: A library for Software Composition Analysis☆587Updated this week
- automatically detect software supply chain smells and issues http://arxiv.org/pdf/2410.16049☆18Mar 13, 2026Updated last month
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆47Apr 10, 2026Updated last week
- An implementation of the Static CT API based on Tessera.☆29Updated this week
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Find multiple versions of dependencies from pnpm lockfile.☆20Apr 13, 2026Updated last week
- SBOM Move - Automate build and transfer of SBOMs across systems☆26Apr 6, 2026Updated 2 weeks ago
- ✨ Experimental proof-of-concept typescript-go powered JS/TS linter written in Go☆511Jul 13, 2025Updated 9 months ago
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆337Updated this week
- GUAC aggregates software security metadata into a high fidelity graph database.☆1,480Updated this week
- A repository of reports of malicious packages identified in Open Source package repositories, consumable via the Open Source Vulnerabilit…☆491Updated this week
- A Kubernetes agent to synchronize APIs and their objects between Kubernetes clusters and kcp.☆18Updated this week
- Mermaid generator typed in TypeScript☆14Dec 27, 2023Updated 2 years ago
- Fix TypeScript Declarations for default CJS exports☆13Mar 23, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- #supply #chain #attack #detection☆649Updated this week
- Visualizer for GUAC☆31Updated this week
- Blazingly fast Morse code encoding/decoding☆16Oct 24, 2025Updated 5 months ago
- Prettier plugin for formatting JSDoc type annotations.☆15Apr 11, 2026Updated last week
- Software Supply Chain Transparency Log☆1,120Updated this week
- The Unreproducible Package☆70Feb 19, 2025Updated last year
- Shim for connecting Swift host code to BuildKit running in a container.☆114Updated this week
- NAT64 agent for Kubernetes deployments☆35Updated this week
- ☆1,147Mar 24, 2026Updated 3 weeks ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Resources for the deps.dev API☆396Apr 7, 2026Updated last week
- To compute CRC values by providing the length of bits, expression, reflection, an initial value and a final xor value. It has many built-…☆18Dec 26, 2025Updated 3 months ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆523Updated this week
- テストの書き方やテクニックを学ぶハンズオンです☆10May 11, 2021Updated 4 years ago
- Build OCI images from APK packages directly without Dockerfile☆1,585Apr 13, 2026Updated last week
- ☆19Apr 1, 2026Updated 2 weeks ago
- Enable interactions with a cluster and its resources: built-in types, CRDs and COs.☆12May 17, 2024Updated last year
- A Go implementation of in-toto. in-toto is a framework to protect software supply chain integrity.☆147Apr 10, 2026Updated last week
- Format agnostic SBOM tooling☆137Nov 20, 2025Updated 5 months ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆256Apr 13, 2026Updated last week
- ☆16May 15, 2024Updated last year
- SBOM Explorer - Discover and pull public SBOMs☆21May 23, 2025Updated 10 months ago
- Supply-Chain Firewall (SCFW) is a tool for preventing the installation of malicious npm and PyPI packages☆266Updated this week
- go-ima is a tool that checks if a file has been tampered with. It is useful in ensuring integrity in CI systems☆14Sep 28, 2023Updated 2 years ago
- in-toto is a framework to protect supply chain integrity.☆994Apr 13, 2026Updated last week
- Fedora Atomic images built on top of Onyx, designed for Budgie Desktop development☆11Feb 11, 2024Updated 2 years ago