Alternatives and similar repositories for ratify

Users that are interested in ratify are comparing it to the libraries listed below

• notaryproject / notation
  A CLI tool to sign and verify artifacts
  ☆460Updated 3 weeks ago
• sigstore / policy-controller
  Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supp…
  ☆153Updated this week
• sigstore / k8s-manifest-sigstore
  kubectl plugin for signing Kubernetes manifest YAML files with sigstore
  ☆85Updated last week
• notaryproject / specifications
  Cross tooling and interoperability specifications
  ☆175Updated 8 months ago
• opcr-io / policy
  CLI for building OPA policies into OCI images
  ☆250Updated last week
• rad-security / kbom
  KBOM - Kubernetes Bill of Materials
  ☆323Updated 6 months ago
• ckotzbauer / sbom-operator
  Catalogue all images of a Kubernetes cluster to multiple targets with Syft
  ☆217Updated last week
• kyverno / kyverno-json
  Kyverno for any JSON!
  ☆89Updated last year
• kubewarden / kubewarden-controller
  Manage admission policies in your Kubernetes cluster with ease
  ☆222Updated this week
• kubernetes-sigs / bom
  A utility to generate SPDX-compliant Bill of Materials manifests
  ☆437Updated this week
• falcosecurity / falco-talon
  Response Engine for managing threats in your Kubernetes
  ☆189Updated 2 months ago
• kubescape / regolibrary
  The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.
  ☆130Updated this week
• ondat / trousseau
  Store and access your secrets the Kubernetes native way with any external KMS.
  ☆180Updated 2 years ago
• sigstore / helm-charts
  Helm charts for sigstore project
  ☆87Updated this week
• chainguard-dev / actions
  A collection of reusable Github Actions workflows.
  ☆157Updated this week
• giantswarm / starboard-exporter
  A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard) and Kubescape.
  ☆62Updated this week
• google / k8s-digester
  Add digests to container and init container images in Kubernetes pod and pod template specs. Use either as a mutating admission webhook, …
  ☆156Updated 10 months ago
• sigstore / cosign-gatekeeper-provider
  🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sig…
  ☆79Updated 2 months ago
• Azure / fleet
  Multi-cluster core
  ☆222Updated last week
• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆223Updated last week
• stacklok / sigstore-the-hard-way
  sigstore the hard way!
  ☆118Updated 6 months ago
• kubernetes-retired / wg-policy-prototypes
  A place for policy work group related proposals and prototypes.
  ☆65Updated 8 months ago
• istio-ecosystem / sail-operator
  The Sail Operator is able to install and manage the lifecycle of the Istio control plane in an Kubernetes & OpenShift cluster.
  ☆92Updated this week
• kubescape / cel-admission-library
  This projects contains pre-made policies for Kubernetes Validating Admission Policies. This policy library is based on Kubescape controls…
  ☆78Updated 3 months ago
• buildsec / frsca
  ☆255Updated 2 weeks ago
• cert-manager / csi-driver-spiffe
  A Kubernetes CSI plugin to automatically mount SPIFFE certificates to Pods using ephemeral volumes
  ☆85Updated this week
• oras-project / artifacts-spec
  ☆64Updated last year
• eraser-dev / eraser
  🧹 Cleaning up images from Kubernetes nodes
  ☆581Updated last week
• armosec / kubecop
  Runtime detection and response for malicious events in Kubernetes workloads
  ☆46Updated last year
• k8sstormcenter / honeycluster
  Threat-informed defense for cloudnative: Reference Implementation of a so-called Honeycluster - The detection capabilities can also be us…
  ☆55Updated last month