Alternatives and similar repositories for safety-web

Users that are interested in safety-web are comparing it to the libraries listed below

• transparency-dev / tessera
  Go library for building tile-based transparency logs (tlogs)
  ☆95Updated last week
• chainguard-dev / justtrustme
  ☆56Updated last week
• openvex / spec
  OpenVEX Specification
  ☆158Updated 3 months ago
• secure-systems-lab / dsse
  A specification for signing methods and formats used by Secure Systems Lab projects.
  ☆84Updated this week
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆115Updated last week
• cashapp / pivit
  ☆100Updated 5 months ago
• interlynk-io / sbomgr
  SBOM Search - Context aware search in SBOM repositories
  ☆28Updated 2 weeks ago
• Betterment / claws
  💅🏽 analyzes your github actions
  ☆93Updated 3 weeks ago
• vendorsec / mvsp
  Minimum Viable Secure Product mvsp.dev
  ☆202Updated 9 months ago
• tailscale / ToBeReviewedBot
  GitHub App to watch for PRs merged without a reviewer approving.
  ☆125Updated 5 months ago
• chainguard-dev / bom-shelter
  A place to systematically store software bill of materials (SBOM) documents.
  ☆46Updated 2 years ago
• theupdateframework / tuf-on-ci
  A TUF repository and signing tool
  ☆40Updated this week
• tacosframework / TACOS-spec
  TACOS framework structural details
  ☆20Updated 4 months ago
• FiloSottile / sunlight
  A Certificate Transparency log implementation and monitoring API designed for scalability, ease of operation, and reduced cost.
  ☆257Updated this week
• mitre / hipcheck
  Automatically assess and score software repositories for supply chain risk.
  ☆114Updated last week
• transparency-dev / armored-witness
  ☆27Updated this week
• ossf / package-feeds
  Feed parsing for language package manager updates
  ☆78Updated 9 months ago
• avolens / kubefuzz
  Generative and mutative fuzzer for Kubernetes admission controller chains by automatically parsing the cluster api specification.
  ☆74Updated 2 years ago
• omnibor / site
  Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.
  ☆21Updated 7 months ago
• anchore / grype-db
  ☆54Updated this week
• sigstore / rekor-tiles
  Signature Transparency Log designed for ease of use, low cost, and minimal maintenance
  ☆19Updated last week
• mozilla / crlite
  WebPKI-level Certificate Revocation via Multi-Level Bloom Filter Cascade
  ☆130Updated last month
• testifysec / witness-run-action
  ☆11Updated this week
• cloudflare / har-sanitizer
  ☆216Updated 11 months ago
• ossf / oss-vulnerability-guide
  A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…
  ☆128Updated 8 months ago
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆192Updated 3 weeks ago
• omnibor / spec
  Specification for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.
  ☆26Updated last month
• anchore / chronicle
  a fast changelog generator sourced from PRs and Issues
  ☆63Updated last week
• google / osv-scalibr
  OSV-SCALIBR: A library for Software Composition Analysis
  ☆495Updated this week
• lirlia / prel
  prel(iminary) is an application that temporarily assigns Google Cloud IAM Roles and includes an approval process.
  ☆46Updated this week