salrashid123 / vault_mtls_tpm
β10Updated this week
Related projects: β
- Provides agent and server plugins for SPIRE to allow TPM 2-based node attestation.β71Updated last year
- π step plugin to manage keys and certificates on a cloud KMSs and HSMsβ47Updated this week
- Trusted Certificate Service (TCS) is a K8s service to protect signing keys using Intel's SGX technology. K8s CSR and cert-manager CR APIsβ¦β29Updated 4 months ago
- A library for building CSI drivers that request certificates from cert-managerβ14Updated this week
- TUF repository for Sigstore trust rootβ84Updated this week
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.β55Updated this week
- Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.β57Updated this week
- The SPIFFE Helper is a tool that can be used to retrieve and manage SVIDs on behalf of a workloadβ43Updated this week
- A CLI used to work with the Wolfi OSS projectβ53Updated this week
- π Secret discovery service (SDS): simplifying certificate management for relying parties (such as Envoy)β68Updated this week
- Go implementation for CNAB content trust verification using TUF, Notary, and in-totoβ31Updated last year
- Go library for Sigstore signing and verificationβ43Updated this week
- Helm charts for sigstore projectβ64Updated last week
- An http proxy for reproducibility.β19Updated last year
- β27Updated this week
- Cosign Github Actionβ119Updated last week
- Toolkit to manage keys and certificates in TPM2 chipsβ35Updated 2 weeks ago
- A specification for signing methods and formats used by Secure Systems Lab projects.β66Updated last week
- The API service which leverages CockroachDB as a backend to inventory firmware, bios, and other hardware information required for cohesivβ¦β10Updated this week
- Kairos bootstrapperβ17Updated last week
- sigstore the hard way!β110Updated 4 months ago
- A Go implementation of in-toto. in-toto is a framework to protect software supply chain integrity.β128Updated this week
- Go implementation of The Update Framework heavily influenced by python-tufβ13Updated 6 months ago
- Upstream Kubelet packaged as a container imageβ17Updated last month
- Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable suppβ¦β123Updated last week
- Kubernetes Native Extension to build Linux distributions artifacts from container imagesβ16Updated last week
- golang crypto.Signer for Trusted Platform Module (TPM) and Google Cloud KMSβ30Updated 2 months ago
- Go implementation of witnessβ21Updated this week
- Container Storage Interface components for SPIFFEβ53Updated last month