in-toto / in-toto-rs
A rust implementation of in-toto
☆32Updated last month
Related projects: ⓘ
- An experimental Rust crate for sigstore☆161Updated last week
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆30Updated 8 months ago
- Supply Chain Query Tool☆13Updated 2 years ago
- An http proxy for reproducibility.☆19Updated last year
- Rust implementation of the keylime agent☆96Updated last week
- Rust implementation of The Update Framework (TUF)☆172Updated 2 months ago
- Rust libraries and tools for using and generating TUF repositories☆195Updated last week
- Rust library for SPIFFE support.☆17Updated last week
- A CLI tool for creating secure by design/default source repos.☆24Updated last month
- Creates CycloneDX Software Bill of Materials (SBOM) from Rust (Cargo) projects☆96Updated 3 weeks ago
- Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools☆18Updated last week
- A specification for signing methods and formats used by Secure Systems Lab projects.☆66Updated last week
- Log monitor for Rekor to verify immutability and monitor entries☆24Updated this week
- Given a buildinfo file from a Debian package, generate instructions for attempting to reproduce the binary packages built from the associ…☆16Updated last year
- Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.☆32Updated last year
- A Rust crate to interact with OCI registries☆92Updated 2 weeks ago
- Initial discussions on signatures of WebAssembly modules.☆16Updated 2 years ago
- C-friendly API to make path resolution safer on Linux.☆66Updated this week
- SPDX Merge tool☆39Updated last week
- Authenticate the cryptographic chain-of-custody of Linux distributions (like Arch Linux and Debian) to their source code inputs☆27Updated last month
- TSS 2.0 Enhanced System API (ESAPI) Rust wrapper☆86Updated this week
- Run k8s operators in wasm to reduce their overhead☆50Updated last year
- A functional type system for policy inspection, audit and enforcement.☆12Updated last year
- K8S Operator for Rekor☆20Updated last year
- Provides easy-to-use Linux seccomp-bpf jailing.☆71Updated 2 months ago
- ☆17Updated 3 months ago
- Go implementation for CNAB content trust verification using TUF, Notary, and in-toto☆31Updated last year
- TUF repository for Sigstore trust root☆84Updated this week
- Darkfiles finds orphaned files in container images and makes them to bad deeds☆41Updated last year