Alternatives and similar repositories for safety-web

Users that are interested in safety-web are comparing it to the libraries listed below

• transparency-dev / tessera
  Go library for building tile-based transparency logs (tlogs)
  ☆107Updated this week
• chainguard-dev / justtrustme
  ☆56Updated last month
• Betterment / claws
  💅🏽 analyzes your github actions
  ☆95Updated last month
• theupdateframework / tuf-on-ci
  A TUF repository and signing tool
  ☆42Updated this week
• openvex / spec
  OpenVEX Specification
  ☆160Updated 4 months ago
• secure-systems-lab / dsse
  A specification for signing methods and formats used by Secure Systems Lab projects.
  ☆87Updated last month
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆117Updated this week
• FiloSottile / sunlight
  A Certificate Transparency log implementation and monitoring API designed for scalability, ease of operation, and reduced cost.
  ☆262Updated last month
• tailscale / ToBeReviewedBot
  GitHub App to watch for PRs merged without a reviewer approving.
  ☆127Updated 6 months ago
• tacosframework / TACOS-spec
  TACOS framework structural details
  ☆20Updated 5 months ago
• google / magic-github-proxy
  An access-limiting stateless GitHub API Proxy
  ☆149Updated 3 years ago
• telophasehq / go-ocsf
  ☆73Updated this week
• lirlia / prel
  prel(iminary) is an application that temporarily assigns Google Cloud IAM Roles and includes an approval process.
  ☆46Updated last week
• google / ctrdac
  ☆13Updated 8 months ago
• sigstore / rekor-monitor
  Log monitor for Rekor to verify immutability and monitor entries
  ☆38Updated last week
• cashapp / pivit
  ☆99Updated last month
• sigstore / rekor-tiles
  Signature Transparency Log designed for ease of use, low cost, and minimal maintenance
  ☆20Updated this week
• CycodeLabs / cimon-action
  Runtime Security Solution for your CI/CD Pipeline
  ☆110Updated 4 months ago
• in-toto / community
  in-toto is a framework to secure the software supply chain.
  ☆71Updated 9 months ago
• mikewest / baseline-header
  What if developers could opt-into better default behaviors en masse, forcing them to pick and choose the legacy risks they want to enable…
  ☆19Updated 2 years ago
• Snowflake-Labs / sansshell
  A non-interactive daemon for host management
  ☆115Updated this week
• cloudflare / har-sanitizer
  ☆219Updated last year
• in-toto / demo
  Securing Alice's, Bob's and Carl's software supply chain using in-toto
  ☆98Updated last week
• semgrep / semgrep-action
  This project is deprecated. Use https://github.com/returntocorp/semgrep instead
  ☆74Updated last year
• vendorsec / mvsp
  Minimum Viable Secure Product mvsp.dev
  ☆202Updated 10 months ago
• bullfrogsec / bullfrog
  Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows
  ☆112Updated last week
• mozilla / crlite
  Compact certificate revocation lists for the WebPKI
  ☆135Updated last week
• GoogleCloudPlatform / assured-workloads-terraform
  ☆18Updated last year
• interlynk-io / sbomgr
  SBOM Search - Context aware search in SBOM repositories
  ☆29Updated 2 weeks ago
• stacklok / frizbee
  Throw a tag at it and it comes back with a checksum.
  ☆149Updated last week