Cryptographic and general-purpose routines for Secure Systems Lab projects at NYU
☆52Mar 17, 2026Updated this week
Alternatives and similar repositories for securesystemslib
Users that are interested in securesystemslib are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- A runbook for the PSF, for TUF key setup and initial signing operations to bootstrap signing for PyPI.☆16Jun 7, 2022Updated 3 years ago
- TUF repository for Sigstore trust root☆120Updated this week
- Cryptographic and general-purpose routines for Golang Secure Systems Lab projects at NYU☆28Mar 12, 2026Updated last week
- Umbrella Repository Service for TUF☆62Feb 23, 2026Updated last month
- A TUF repository and signing tool☆43Updated this week
- Supply Chain Query Tool☆13May 25, 2022Updated 3 years ago
- in-toto is a framework to protect supply chain integrity.☆982Updated this week
- ☆45Mar 13, 2026Updated last week
- Own Certificate Authority - ownca☆35Aug 12, 2024Updated last year
- Lind: Secure Lightweight Adaptive Isolation☆32Jul 3, 2025Updated 8 months ago
- Securing Alice's, Bob's and Carl's software supply chain using in-toto☆105Feb 11, 2026Updated last month
- ☆11Nov 10, 2025Updated 4 months ago
- 🔒 Remote signing☆26Nov 8, 2017Updated 8 years ago
- The Update Framework specification☆398Jan 22, 2026Updated 2 months ago
- A Java implementation of in-toto runlib☆11Jul 23, 2024Updated last year
- Experimental script to query rebuilderd for results☆14Dec 4, 2023Updated 2 years ago
- sget is a keyless safe script retrieval and execution tool☆18Feb 7, 2022Updated 4 years ago
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆33Apr 22, 2025Updated 11 months ago
- Container image builder based on Gentoo Linux☆15Nov 17, 2020Updated 5 years ago
- Go implementation of witness☆45Mar 13, 2026Updated last week
- Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools☆19Updated this week
- OtterDog is a tool to manage GitHub organizations at scale using a configuration as code approach. It is actively used by the Eclipse Fou…☆46Mar 12, 2026Updated last week
- A GitHub Action for sigstore-python☆64Updated this week
- in-toto Enhancements☆20Feb 17, 2025Updated last year
- A Sigstore client written in Python☆315Updated this week
- TUF Augmentation Proposals (TAPs)☆37Aug 28, 2025Updated 6 months ago
- Given a buildinfo file from a Debian package, generate instructions for attempting to reproduce the binary packages built from the associ…☆17Sep 24, 2022Updated 3 years ago
- Sucklessless File based IRC Client☆14Sep 28, 2017Updated 8 years ago
- ☆12May 2, 2023Updated 2 years ago
- A specification for signing methods and formats used by Secure Systems Lab projects.☆94Nov 10, 2025Updated 4 months ago
- WEBCAT is an architectural framework for providing blocking code signing and verification, integrity and transparency checks for browser-…☆78Mar 11, 2026Updated last week
- standard for Uptane☆42Apr 20, 2024Updated last year
- Packaging improvements that could be funded☆57Feb 27, 2023Updated 3 years ago
- Throw a tag at it and it comes back with a checksum.☆159Updated this week
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆108Mar 14, 2026Updated last week
- Sigstore's Protocol Buffer specifications☆34Updated this week
- Trusty Dependency Risk Action☆10Feb 12, 2025Updated last year
- The code behind the GitConsensus Github App☆14Feb 20, 2026Updated last month
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆72Updated this week