Alternatives and similar repositories for draft-ietf-scitt-architecture:

Users that are interested in draft-ietf-scitt-architecture are comparing it to the libraries listed below

• twiss / source-code-transparency
  Source Code Transparency
  ☆11Updated last year
• kusaridev / spector
  Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks
  ☆31Updated last year
• sigstore / root-signing
  TUF repository for Sigstore trust root
  ☆96Updated this week
• in-toto / scai-demos
  Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools
  ☆18Updated this week
• theupdateframework / tuf-on-ci
  A TUF repository and signing tool
  ☆28Updated this week
• secure-systems-lab / dsse
  A specification for signing methods and formats used by Secure Systems Lab projects.
  ☆72Updated 5 months ago
• sigstore / rekor-monitor
  Log monitor for Rekor to verify immutability and monitor entries
  ☆30Updated this week
• sigstore / rekor-search-ui
  Search Rekor for entries
  ☆31Updated this week
• kusaridev / skootrs
  A CLI tool for creating secure by design/default source repos.
  ☆25Updated 6 months ago
• google / oss-rebuild
  Securing open-source package ecosystems by originating, validating, and augmenting build attestations.
  ☆33Updated this week
• GoogleCloudPlatform / stet
  Split-Trust Encryption Tool for ubiquitous data encryption.
  ☆38Updated 3 weeks ago
• anthonyharrison / sbomaudit
  Report on quality of SBOM contents
  ☆17Updated 2 months ago
• ietf-scitt / draft-birkholz-scitt-architecture
  A specification including, problem statement, use cases, requirements, and architectural constituents for a Transparency Service in suppo…
  ☆14Updated 2 years ago
• omnibor / spec
  A draft standard for communicating a cryptographic record of build inputs for software artifacts.
  ☆23Updated last week
• CCC-Attestation / formal-spec-TEE
  Formal specification of attestation mechanisms in Confidential Computing
  ☆17Updated 5 months ago
• anchore / vulnerability-match-labels
  Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners
  ☆11Updated this week
• scitt-community / scitt-api-emulator
  SCITT API Emulator
  ☆10Updated 2 months ago
• SBOMit / specification
  ☆60Updated 7 months ago
• ossf / great-mfa-project
  The Great Multi-Factor Authentication (MFA) Distribution Project of the Open Source Security Foundation (OpenSSF). We work to distribute …
  ☆54Updated 3 years ago
• spdx / spdx-3-model
  The model for the information captured in SPDX version 3 standard.
  ☆76Updated last week
• spdx / meetings
  This repository stores meetings minutes for the SPDX project
  ☆29Updated this week
• sigstore / protobuf-specs
  Protocol Buffer specifications
  ☆27Updated this week
• ossf / toolbelt
  ☆18Updated 8 months ago
• philips-software / SPDXMerge
  SPDX Merge tool
  ☆41Updated this week
• chainguard-dev / self-attestation
  Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.
  ☆21Updated last year
• slsa-framework / slsa-jenkins-generator
  A proof-of-concept SLSA provenance generator for Jenkins
  ☆19Updated 6 months ago
• transparency-dev / merkle
  ☆30Updated this week
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆44Updated last year
• kusaridev / helm-charts
  Helm Chart for deploying GUAC
  ☆14Updated last month
• IBM / CBOM
  Cryptography Bill of Materials
  ☆64Updated last week