Technical Advisory Council
☆135Feb 17, 2026Updated last week
Alternatives and similar repositories for tac
Users that are interested in tac are comparing it to the libraries listed below
Sorting:
- OpenSSF Security Tooling Working Group☆320Jul 6, 2025Updated 7 months ago
- The purpose of the Metrics & Metadata (formerly Identifying Security Threats) working group is to enable stakeholders to have informed co…☆223Apr 23, 2024Updated last year
- Machine-readable specification for the attestation of security-relevant data.☆72Updated this week
- OpenSSF Project Template☆23Nov 29, 2023Updated 2 years ago
- Evangelizing the mission and work of the OpenSSF and building strong community outreach around end-users, open-source maintainers, and co…☆23May 2, 2024Updated last year
- OpenSSF Working Group on Securing Software Repositories☆128Dec 18, 2025Updated 2 months ago
- Automating Compliance Tooling Project☆22Jan 28, 2022Updated 4 years ago
- Helping allocate resources to secure the critical open source projects we all depend on.☆387May 8, 2025Updated 9 months ago
- Working Group on Artificial Intelligence and Machine Learning (AI/ML) Security☆149Dec 19, 2025Updated 2 months ago
- Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.☆33Apr 4, 2023Updated 2 years ago
- OpenSSF Governance and Legal Docs☆75Sep 9, 2025Updated 5 months ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆110Feb 20, 2026Updated last week
- Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the …☆197Jan 15, 2026Updated last month
- ☆26Jun 10, 2025Updated 8 months ago
- TUF repository for Sigstore trust root☆118Updated this week
- Supply Chain Query Tool☆13May 25, 2022Updated 3 years ago
- A CLI tool for creating secure by design/default source repos.☆28Jul 29, 2024Updated last year
- Exploit Prediction Scoring System (EPSS)☆31Jun 1, 2022Updated 3 years ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆110Feb 11, 2026Updated 2 weeks ago
- Open Source Vulnerability schema.☆235Feb 20, 2026Updated last week
- ☆16May 15, 2024Updated last year
- General sigstore community repo☆44Updated this week
- OpenSSF Endusers Working Group☆28Mar 21, 2024Updated last year
- Format agnostic SBOM tooling☆132Nov 20, 2025Updated 3 months ago
- This repository stores meetings minutes for the SPDX project☆39Feb 17, 2026Updated last week
- in-toto Attestation Framework☆326Feb 17, 2026Updated last week
- ☆37Apr 23, 2024Updated last year
- The Best Practices for OSS Developers working group is dedicated to raising awareness and education of secure code best practices for ope…☆992Updated this week
- ☆23Oct 26, 2021Updated 4 years ago
- Specification for OmniBOR, reproducible identifiers & fine-grained build dependency tracking for software artifacts.☆26Nov 17, 2025Updated 3 months ago
- ☆30Nov 5, 2023Updated 2 years ago
- SLSA implementation of Community Specification governance☆24Jan 15, 2026Updated last month
- 🥑 Inspect and understand an organization's software supply chain using AI to enable stakeholders to make actionable decisions about soft…☆22Apr 15, 2024Updated last year
- The model for the information captured in SPDX version 3 standard.☆98Updated this week
- A collection of data fetchers, and simple quarterly and yearly CVE forecasting models.☆46Oct 1, 2025Updated 5 months ago
- OSPO Landscape☆41Dec 24, 2025Updated 2 months ago
- Stakeholder-Specific Vulnerability Categorization☆173Updated this week
- Collect, curate, and communicate relevant security metrics for open source projects.☆63Mar 13, 2024Updated last year
- Sigstore user stories☆30Aug 25, 2023Updated 2 years ago