nais / salsa
SLSA level 3 action
β11Updated 10 months ago
Alternatives and similar repositories for salsa:
Users that are interested in salsa are comparing it to the libraries listed below
- β40Updated 4 months ago
- An SBOM query language and associated utilitiesβ54Updated last year
- π Rekor transparency log monitoring and alertingβ27Updated last year
- To manage Docker Content Trust and Notary certificatesβ12Updated this week
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.β60Updated this week
- Trust Dexter to ensure that all your images are pinned by digest for better securityβ29Updated last year
- Transparenty Immutable Container Image Tagsβ20Updated last year
- β20Updated 7 months ago
- A simple tool for converting Rego (OPA) rule into command.β28Updated 2 years ago
- Build and deploy Go applications with Terraformβ27Updated last week
- Tool to automate build instructions generationβ30Updated last week
- Terraform provider to perform OCI image operationsβ13Updated this week
- A High-Availability distribution of Knative.β20Updated last year
- A CLI used to work with the Wolfi OSS projectβ60Updated this week
- Example goreleaser + github actions config with keyless signing, SBOM generation, and attestationsβ55Updated last month
- Scans SBOMs for vulnerabilities with Grypeβ79Updated this week
- Slack alert bot for matching Github Audit Eventsβ10Updated 4 months ago
- Go module to generate and transform VEX documentsβ38Updated this week
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'β¦β32Updated 2 years ago
- vexctl is a tool to attest VEX impact statementsβ44Updated last year
- Trivy plugin for OCI referrersβ23Updated 10 months ago
- native go library for installation and management of apk packagesβ29Updated 9 months ago
- A Kubewarden Policy that detects usage of deprecated and dropped Kubernetes resourcesβ15Updated this week
- Crossplane Provider for GitHubβ24Updated 5 months ago
- Kubernetes tools in a "distroless" containerβ13Updated last year
- Various tools, images, etc. to support the Wolfi OSS projectβ21Updated last month
- fatt tries to find any purl in your project by looking at predefined fields in the supported packages. These fields describe using a purlβ¦β10Updated this week
- A hub-and-spoke example for multi-cluster continuous delivery with Fluxβ26Updated 3 months ago
- OpenCP shim is a simple HTTP server that implements the Kubernetes API server interface. It is a shim that allows you to use the Kubernetβ¦β14Updated 2 years ago
- Example repository that demonstrates a supply chain security workflow using Syft, Grype, Cosignβ11Updated 3 years ago