openpubkey / verify-docker-cli-plugin
A docker CLI plugin for verifying signed attestations on images
☆13Updated 10 months ago
Related projects: ⓘ
- Sigstore user stories☆29Updated last year
- ☆21Updated last year
- An query language and interactive tooling to work with SBOM data.☆12Updated last week
- native go library for installation and management of apk packages☆29Updated 3 months ago
- Integrates Spiffe and Vault to have secretless authentication☆82Updated last week
- A library for representing OCI image layers in an abstract filesystem☆27Updated 4 years ago
- A CLI used to work with the Wolfi OSS project☆53Updated this week
- To manage Docker Content Trust and Notary certificates☆12Updated this week
- GitHub actions for the chainguard-images☆17Updated last month
- Tool to automate build instructions generation☆29Updated last week
- Pluggable generator for creating, using and sharing reusable templates that can be applied directly, generated into operator, helm chart …☆11Updated 3 years ago
- A sweet little formatter for YAML☆19Updated last month
- Transparenty Immutable Container Image Tags☆19Updated last year
- Create a dedicated IaaS instance per Pod to mitigate container breakout (including CPU vulnerabilities depending on the instance type)☆22Updated 4 years ago
- A curated list of awesome CNAB (Cloud Native Applications Bundles) | https://cnab.io/☆15Updated 3 years ago
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated 10 months ago
- fatt tries to find any purl in your project by looking at predefined fields in the supported packages. These fields describe using a purl…☆10Updated 3 weeks ago
- Kubernetes security scanner based on the open-source container vulnerability scanner Trivy.☆23Updated 3 years ago
- oci and apk explorer☆43Updated this week
- ☆29Updated last month
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆55Updated this week
- Generate K8s RBAC policies based on e2e test runs☆28Updated 3 years ago
- This tool allows using a SPIFFE JWT to authenticate to AWS APIs☆34Updated 3 months ago
- Build and deploy Go applications with Terraform☆27Updated 3 weeks ago
- A Kubewarden Policy that detects usage of deprecated and dropped Kubernetes resources☆15Updated last week
- vexctl is a tool to attest VEX impact statements☆44Updated last year
- OCI viewer☆15Updated 3 months ago
- A trivial wrapper around spf13/cobra to simplify some basic patterns☆22Updated 10 months ago
- ☆19Updated this week
- A CLI for boostrapping tenant Kubernetes clusters.☆20Updated 4 years ago