openpubkey / verify-docker-cli-pluginLinks
A docker CLI plugin for verifying signed attestations on images
☆13Updated last year
Alternatives and similar repositories for verify-docker-cli-plugin
Users that are interested in verify-docker-cli-plugin are comparing it to the libraries listed below
Sorting:
- Sigstore user stories☆30Updated last year
- native go library for installation and management of apk packages☆29Updated last year
- Simple example for using an in-cluster BuildKit instance for container builds☆19Updated 6 years ago
- Integrates Spiffe and Vault to have secretless authentication☆87Updated this week
- Example project using SLSA 3 Generic Generator with GoReleaser☆10Updated last year
- An query language and interactive tooling to work with SBOM data.☆14Updated 8 months ago
- Utility methods for gRPC.☆10Updated this week
- Transparenty Immutable Container Image Tags☆20Updated last year
- Create a dedicated IaaS instance per Pod to mitigate container breakout (including CPU vulnerabilities depending on the instance type)☆22Updated 5 years ago
- To manage Docker Content Trust and Notary certificates☆12Updated this week
- Tool to interact with Docker registry objects.☆25Updated 7 months ago
- This tool allows using a SPIFFE JWT to authenticate to AWS APIs☆34Updated last year
- A library for representing OCI image layers in an abstract filesystem☆27Updated 4 years ago
- ☆20Updated last week
- Pluggable generator for creating, using and sharing reusable templates that can be applied directly, generated into operator, helm chart …☆11Updated 4 years ago
- Tool to automate build instructions generation☆33Updated this week
- OCI viewer☆19Updated 2 months ago
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆62Updated this week
- Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.☆43Updated last year
- A CLI used to work with the Wolfi OSS project☆62Updated this week
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- ☆29Updated 9 months ago
- torcx is a boot-time addon manager for immutable systems☆17Updated last month
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- A Kubewarden Policy that detects usage of deprecated and dropped Kubernetes resources☆16Updated this week
- Build and deploy Go applications with Terraform☆27Updated this week
- A curated list of awesome CNAB (Cloud Native Applications Bundles) | https://cnab.io/☆16Updated 4 years ago
- etcd-k8s-extract takes in an etcd data directory or db file used in kubernetes, extracts the kubernetes resources and then writes the res…☆37Updated 5 months ago
- Generate K8s RBAC policies based on e2e test runs☆28Updated 3 years ago
- ☆23Updated 2 years ago