ossf / great-mfa-projectLinks
The Great Multi-Factor Authentication (MFA) Distribution Project of the Open Source Security Foundation (OpenSSF). We work to distribute hardware MFA tokens to critical open source software (OSS) projects.
☆54Updated 3 years ago
Alternatives and similar repositories for great-mfa-project
Users that are interested in great-mfa-project are comparing it to the libraries listed below
Sorting:
- Technical Advisory Council☆129Updated last week
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆32Updated 4 months ago
- vexctl is a tool to attest VEX impact statements☆45Updated 2 years ago
- Proof-of-concept SLSA provenance generator for GitHub Actions☆100Updated 2 years ago
- ☆30Updated last week
- Darkfiles finds orphaned files in container images and makes them to bad deeds☆42Updated 2 years ago
- TUF repository for Sigstore trust root☆107Updated this week
- Sigstore user stories☆30Updated last year
- A specification for signing methods and formats used by Secure Systems Lab projects.☆83Updated 11 months ago
- Securing Alice's, Bob's and Carl's software supply chain using in-toto☆94Updated last week
- A CLI tool for creating secure by design/default source repos.☆26Updated last year
- verify https assets with a public transparency log☆75Updated 3 years ago
- An access-limiting stateless GitHub API Proxy☆149Updated 2 years ago
- go library for processing container images and simulating a squash filesystem☆97Updated last week
- Website for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆21Updated 6 months ago
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆137Updated last year
- Log monitor for Rekor to verify immutability and monitor entries☆36Updated this week
- Collect, curate, and communicate relevant security metrics for open source projects.☆63Updated last year
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆125Updated 7 months ago
- K8S Operator for Rekor☆20Updated 2 years ago
- ☆24Updated last year
- A CLI used to work with the Wolfi OSS project☆65Updated this week
- ☆63Updated last year
- ☆29Updated 6 months ago
- in-toto is a framework to secure the software supply chain.☆70Updated 7 months ago
- A place to systematically store software bill of materials (SBOM) documents.☆46Updated 2 years ago
- ☆23Updated 2 years ago
- An SBOM query language and associated utilities☆54Updated last year
- ☆98Updated 4 months ago
- build distroless images with alpine tools☆131Updated 3 years ago