β26Mar 17, 2026Updated last week
Alternatives and similar repositories for toolbelt
Users that are interested in toolbelt are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworksβ33Apr 22, 2025Updated 11 months ago
- π΄π‘π’ The Amazing Multipurpose Policy Engine (and L)β40Updated this week
- Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.β33Apr 4, 2023Updated 2 years ago
- Software Supply Chain Attribute Integrity (SCAI) Demos and CLI toolsβ19Updated this week
- Vuln Disclosure WG's new SIGβ11Jan 2, 2024Updated 2 years ago
- Privateer plugin for scanning the security hygiene of a GitHub repository.β21Updated this week
- SLSA Proposalsβ11Jan 29, 2024Updated 2 years ago
- K8S Operator for Rekorβ20Feb 23, 2023Updated 3 years ago
- Rust implementation of SafePOSIXβ13May 13, 2025Updated 10 months ago
- Go implementation of witnessβ46Updated this week
- β20Feb 5, 2026Updated last month
- A CLI tool for creating secure by design/default source repos.β28Jul 29, 2024Updated last year
- OpenSSF Endusers Working Groupβ28Mar 21, 2024Updated 2 years ago
- Macaron is an extensible supply-chain security analysis framework from Oracle Labs that supports a wide range of build systems and CI/CD β¦β189Updated this week
- in-toto Enhancementsβ20Feb 17, 2025Updated last year
- A Go implementation of in-toto. in-toto is a framework to protect software supply chain integrity.β145Mar 13, 2026Updated last week
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for soβ¦β108Mar 14, 2026Updated last week
- OpenSSF Working Group on Securing Software Repositoriesβ128Dec 18, 2025Updated 3 months ago
- A functional type system for policy inspection, audit and enforcement.β14Aug 17, 2023Updated 2 years ago
- Format agnostic SBOM toolingβ135Nov 20, 2025Updated 4 months ago
- Lambda function for verifying signed images in ECSβ37Mar 9, 2024Updated 2 years ago
- Golang CGo Wrapper around JSonnet VMβ16Jul 4, 2019Updated 6 years ago
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and discβ¦β135Nov 15, 2025Updated 4 months ago
- Python wrapper for libraries.io APIβ19Dec 1, 2024Updated last year
- Protect GitHub Actions with Traceeβ81Feb 8, 2025Updated last year
- An http proxy for reproducibility.β19Jan 10, 2023Updated 3 years ago
- Sigstore user storiesβ31Aug 25, 2023Updated 2 years ago
- Examples using different CI systems to build with Earthly.β12Oct 1, 2021Updated 4 years ago
- A new signature format for Nix - for verifiable provenance data and SBOMs.β47Mar 16, 2026Updated last week
- Technical Advisory Councilβ136Updated this week
- The Best Practices for OSS Developers working group is dedicated to raising awareness and education of secure code best practices for opeβ¦β999Updated this week
- SPDX Merge toolβ51Mar 2, 2026Updated 3 weeks ago
- A set of tools and libraries for automatically generating and initiating sandboxes for Rust programsβ15Oct 24, 2022Updated 3 years ago
- β33Aug 14, 2025Updated 7 months ago
- An OpenAPI to TypeScript generator.β14Updated this week
- DHCP proxy for Netavarkβ11Jun 12, 2023Updated 2 years ago
- A security layer for Git repositoriesβ579Mar 16, 2026Updated last week
- The purpose of the Metrics & Metadata (formerly Identifying Security Threats) working group is to enable stakeholders to have informed coβ¦β223Apr 23, 2024Updated last year
- Convert Linux perf traces to Go pprof formatβ21Jul 20, 2016Updated 9 years ago