Alternatives and similar repositories for safety-web

Users that are interested in safety-web are comparing it to the libraries listed below

• chainguard-dev / justtrustme
  ☆57Updated last week
• transparency-dev / tessera
  Go library for building tile-based transparency logs (tlogs)
  ☆152Updated this week
• ossf / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆135Updated 2 months ago
• openvex / spec
  OpenVEX Specification
  ☆166Updated 3 weeks ago
• secure-systems-lab / dsse
  A specification for signing methods and formats used by Secure Systems Lab projects.
  ☆94Updated 2 months ago
• Betterment / claws
  💅🏽 analyzes your github actions
  ☆97Updated last month
• cloudflare / har-sanitizer
  ☆237Updated 3 weeks ago
• FiloSottile / sunlight
  A Certificate Transparency log implementation and monitoring API designed for scalability, ease of operation, and reduced cost.
  ☆277Updated 3 weeks ago
• tailscale / ToBeReviewedBot
  GitHub App to watch for PRs merged without a reviewer approving.
  ☆129Updated 9 months ago
• slsa-framework / slsa-github-generator-go
  ☆58Updated 3 years ago
• cashapp / pivit
  ☆99Updated last week
• tacosframework / TACOS-spec
  TACOS framework structural details
  ☆20Updated 8 months ago
• stacklok / frizbee
  Throw a tag at it and it comes back with a checksum.
  ☆154Updated this week
• google / ctrdac
  ☆13Updated last year
• sigstore / rekor-monitor
  Log monitor for Rekor to verify immutability and monitor entries
  ☆45Updated this week
• google / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆141Updated 2 years ago
• theupdateframework / tuf-on-ci
  A TUF repository and signing tool
  ☆43Updated this week
• mikewest / baseline-header
  What if developers could opt-into better default behaviors en masse, forcing them to pick and choose the legacy risks they want to enable…
  ☆19Updated 3 years ago
• Aqua-Nautilus / Dependency-Deprecated-Checker
  ☆56Updated last year
• openvex / go-vex
  Go module to generate and transform VEX documents
  ☆52Updated last week
• paseto-standard / paserk
  Platform Agnostic SERialized Keys
  ☆63Updated last year
• in-toto / demo
  Securing Alice's, Bob's and Carl's software supply chain using in-toto
  ☆104Updated last week
• Snowflake-Labs / sansshell
  A non-interactive daemon for host management
  ☆121Updated last month
• octo-sts / action
  ☆52Updated 2 months ago
• mozilla / crlite
  Compact certificate revocation lists for the WebPKI
  ☆145Updated last week
• OWASP / packman
  A documentation and tracking project with the goal of making package management systems more secure.
  ☆51Updated 4 years ago
• google / localtoast
  ☆115Updated 5 months ago
• google / deps.dev
  Resources for the deps.dev API
  ☆377Updated this week
• omnibor / site
  Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.
  ☆21Updated last year
• cncf / clowarden
  CLOWarden is a tool that manages access to resources across multiple services
  ☆61Updated last week