in-toto is a framework to secure the software supply chain.
☆72Dec 2, 2025Updated 3 months ago
Alternatives and similar repositories for community
Users that are interested in community are comparing it to the libraries listed below
Sorting:
- Specification and other related documents.☆50Jan 13, 2025Updated last year
- A Java implementation of in-toto runlib☆11Jul 23, 2024Updated last year
- ☆76Dec 10, 2025Updated 2 months ago
- in-toto is a framework to protect supply chain integrity.☆980Updated this week
- Securing Alice's, Bob's and Carl's software supply chain using in-toto☆104Feb 11, 2026Updated 3 weeks ago
- Example multi-region application with data residency. Suitable for global and regulated businesses.☆12Dec 1, 2023Updated 2 years ago
- Supply Chain Query Tool☆13May 25, 2022Updated 3 years ago
- in-toto Attestation Framework☆326Updated this week
- Prototype in-toto attestation verifier based on ITE-10 and ITE-11 layouts☆18Feb 27, 2026Updated last week
- Repository for Delphix Terraform Provider built on DCT APIs.☆12Feb 25, 2026Updated last week
- GO utility to generate Dockerfiles in different variants from yml data☆20Jan 19, 2026Updated last month
- NIST OSCAL SDK and CLI☆22Feb 1, 2026Updated last month
- Turn any url into a QR Code☆18Sep 23, 2014Updated 11 years ago
- in-toto Enhancements☆20Feb 17, 2025Updated last year
- Kubernetes audit logging, when you don't control the control plane☆91Updated this week
- Golang bindings for httt://github.com/ostreedev/ostree☆54Aug 5, 2021Updated 4 years ago
- A build tool and library for virtual machines.☆19Apr 19, 2023Updated 2 years ago
- Standalone Go implementation of Metasploit's "db_nmap" and "db_import" commands.☆19Nov 6, 2024Updated last year
- A repository containing example Minder rules and profiles☆24Mar 2, 2026Updated last week
- kbrew is homebrew for Kubernetes☆189Feb 25, 2023Updated 3 years ago
- sigstore maven plugin☆19Jul 22, 2024Updated last year
- Generic DFIR report template☆28Jan 2, 2025Updated last year
- Go client for the CyberArk Secrets Manager API☆21Feb 10, 2026Updated 3 weeks ago
- Template repository for new images☆25Sep 4, 2023Updated 2 years ago
- A Kubernetes plugin that gives context to what is restarting in your Kubernetes cluster☆155Sep 10, 2025Updated 5 months ago
- ☆31Updated this week
- KBOM - Kubernetes Bill of Materials☆324Jul 30, 2025Updated 7 months ago
- Supply-chain Levels for Software Artifacts☆1,816Updated this week
- A security layer for Git repositories☆578Updated this week
- ☆29Jul 15, 2021Updated 4 years ago
- A template project for writing your own Knative eventing source.☆29Updated this week
- Bruk av Sky i offentlig sektor☆28Sep 1, 2022Updated 3 years ago
- Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…☆518Updated this week
- Repository for the generation of OSCAL data types☆28Updated this week
- Orchestron is an Application Vulnerability Management and Correlation Tool.Orchestron helps you solve one key problem "Find and fix vulne…☆31Nov 22, 2022Updated 3 years ago
- Language-agnostic SLSA provenance generation for Github Actions☆549Feb 28, 2026Updated last week
- ThinSat Program materials☆10Oct 18, 2018Updated 7 years ago
- Software Supply Chain Transparency Log☆1,092Updated this week
- 🧵 CLI tool for directly patching container images!☆1,552Updated this week