Example repository that demonstrates a supply chain security workflow using Syft, Grype, Cosign
☆12Sep 15, 2021Updated 4 years ago
Alternatives and similar repositories for example-container-image-supply-chain-security
Users that are interested in example-container-image-supply-chain-security are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- native go library for installation and management of apk packages☆31Jun 5, 2024Updated 2 years ago
- Integrates Spiffe and Vault to have secretless authentication☆100Jun 23, 2026Updated last week
- Submit SBOMs to GitHub's dependency submission API☆19Dec 4, 2025Updated 7 months ago
- Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.☆45Oct 30, 2023Updated 2 years ago
- nginx image demo☆19Sep 11, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- my goreleaser.yml files☆13Jun 24, 2026Updated last week
- Example goreleaser + github actions config with keyless signing, SBOM generation, and attestations☆60Updated this week
- Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect☆23Jun 11, 2026Updated 3 weeks ago
- Demo app duplicated in 5 languages (Go/JavaScript/Python/Ruby/Rust) showing how to go from source code to container image using melange+a…☆37Dec 24, 2023Updated 2 years ago
- SLSA level 3 action☆12Apr 26, 2024Updated 2 years ago
- an go event bus☆13May 16, 2023Updated 3 years ago
- Reports on the licenses used by a Go package and its dependencies.☆11Jul 24, 2024Updated last year
- Go tool to declaratively bump dependencies.☆12Updated this week
- OCI Working Group: Reference Types☆24Aug 25, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- Decode/encode CSV data into/from structs using reflection.☆15Dec 18, 2023Updated 2 years ago
- An official Nomad task driver plugin for sandboxing workloads using native Linux kernel features☆21Jun 26, 2026Updated last week
- A CLI used to work with the Wolfi OSS project☆72Updated this week
- To manage Docker Content Trust and Notary certificates☆13Jun 1, 2026Updated last month
- Comparison of Chainguard Images to others☆21Updated this week
- Syntax highlighters for Gherkin source☆23Oct 14, 2012Updated 13 years ago
- ☆18Apr 29, 2024Updated 2 years ago
- Various tools, images, etc. to support the Wolfi OSS project☆27Jun 22, 2026Updated last week
- Github Action implementation of SLSA Provenance Generation☆50Jun 22, 2026Updated last week
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- This repository hosts the admission controller build on top of grype.☆20Jun 11, 2025Updated last year
- oci and apk explorer☆109Jun 16, 2026Updated 2 weeks ago
- Labeled vulnerability-package match pairs used as ground truth to evaluate vulnerability scanners☆14Jun 11, 2026Updated 3 weeks ago
- Resources to help vulnerability scanners☆14Updated this week
- Detect intrusions that happened in your Kubernetes cluster through audit logs using Falco☆63Jun 2, 2021Updated 5 years ago
- 🔍 Rekor transparency log monitoring and alerting☆27Oct 2, 2023Updated 2 years ago
- ☆21Jun 1, 2026Updated last month
- Scans SBOMs for vulnerabilities with Grype☆88Jun 28, 2026Updated last week
- GitHub actions for the chainguard-images☆21Jun 22, 2026Updated last week
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- ☆15Dec 4, 2018Updated 7 years ago
- Code repository for Practical XMPP, published by Packt☆10Jan 30, 2023Updated 3 years ago
- genAI agent providing security context, tooling for performing security analysis on CVE, components and more☆30Jun 27, 2026Updated last week
- Security risk analysis for Kubernetes resources☆76Jan 23, 2025Updated last year
- Rode facilitates Automated Governance in your software supply chain. This repository contains the rode API which is the primary interface…☆51Jun 30, 2022Updated 4 years ago
- Simplify Kubernetes Secrets Management with Dockhand Secrets Operator☆19Jun 22, 2026Updated last week
- ☆14Nov 3, 2025Updated 8 months ago