nais / salsa
SLSA level 3 action
☆11Updated 4 months ago
Related projects: ⓘ
- Build and deploy Go applications with Terraform☆27Updated 3 weeks ago
- To manage Docker Content Trust and Notary certificates☆12Updated this week
- A CLI used to work with the Wolfi OSS project☆53Updated this week
- ☆19Updated last month
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆55Updated this week
- 🔍 Rekor transparency log monitoring and alerting☆26Updated 11 months ago
- A simple tool for converting Rego (OPA) rule into command.☆28Updated 2 years ago
- Tool to automate build instructions generation☆29Updated last week
- Transparenty Immutable Container Image Tags☆19Updated last year
- Simple tool that allows you to detect imposter commits in GitHub Actions workflows.☆21Updated last week
- Crossplane Provider for GitHub☆24Updated last year
- Overview of philips-labs helm charts☆17Updated last month
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated 10 months ago
- ☆24Updated last year
- ☆21Updated last year
- openid connect relying party as a sidecar/service☆21Updated this week
- Example goreleaser + github actions config with keyless signing and SBOM generation☆55Updated 3 weeks ago
- Keyless Git signing with cosign!☆11Updated 2 years ago
- 🖥️ 👓 Monitor your OPA Gatekeeper via Grafana Dashboard☆14Updated 3 years ago
- Trivy plugin for OCI referrers☆20Updated 4 months ago
- Generate K8s RBAC policies based on e2e test runs☆28Updated 3 years ago
- Sigstore user stories☆29Updated last year
- Go library for Sigstore signing and verification☆16Updated 11 months ago
- fatt tries to find any purl in your project by looking at predefined fields in the supported packages. These fields describe using a purl…☆10Updated 3 weeks ago
- A High-Availability distribution of Knative.☆20Updated 6 months ago
- A sweet little formatter for YAML☆19Updated last month
- GitHub actions for the chainguard-images☆17Updated last month
- ☆11Updated last year
- This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)☆62Updated 3 years ago
- ☆30Updated 4 months ago