Alternatives and similar repositories for cosign

Users that are interested in cosign are comparing it to the libraries listed below

• sigstore / rekor

  View on GitHub
  Software Supply Chain Transparency Log
  ☆1,078Feb 10, 2026Updated last week
• sigstore / fulcio

  View on GitHub
  Sigstore OIDC PKI
  ☆798Feb 10, 2026Updated last week
• anchore / syft

  View on GitHub
  CLI tool and library for generating a Software Bill of Materials from container images and filesystems
  ☆8,362Updated this week
• sigstore / gitsign

  View on GitHub
  Keyless Git signing using Sigstore
  ☆1,057Feb 10, 2026Updated last week
• anchore / grype

  View on GitHub
  A vulnerability scanner for container images and filesystems
  ☆11,516Feb 10, 2026Updated last week
• aquasecurity / trivy

  View on GitHub
  Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
  ☆31,904Updated this week
• kyverno / kyverno

  View on GitHub
  Cloud Native Policy Management
  ☆7,386Updated this week
• containers / skopeo

  View on GitHub
  Work with remote images registries - retrieving information, images, signing content
  ☆10,439Updated this week
• kubescape / kubescape

  View on GitHub
  Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security…
  ☆11,177Feb 4, 2026Updated last week
• getsops / sops

  View on GitHub
  Simple and flexible tool for managing secrets
  ☆20,784Updated this week
• falcosecurity / falco

  View on GitHub
  Cloud Native Runtime Security
  ☆8,653Updated this week
• ko-build / ko

  View on GitHub
  Build and deploy Go applications
  ☆8,337Feb 6, 2026Updated last week
• GoogleContainerTools / distroless

  View on GitHub
  🥑 Language focused docker images, minus the operating system.
  ☆22,226Updated this week
• open-policy-agent / gatekeeper

  View on GitHub
  🐊 Policy Controller for Kubernetes
  ☆4,144Updated this week
• google / go-containerregistry

  View on GitHub
  Go library and CLIs for working with container registries
  ☆3,736Updated this week
• crossplane / crossplane

  View on GitHub
  The Cloud Native Control Plane
  ☆11,413Updated this week
• containerd / nerdctl

  View on GitHub
  contaiNERD CTL - Docker-compatible CLI for containerd, with support for Compose, Rootless, eStargz, OCIcrypt, IPFS, ...
  ☆9,827Updated this week
• chainguard-dev / apko

  View on GitHub
  Build OCI images from APK packages directly without Dockerfile
  ☆1,544Updated this week
• bitnami-labs / sealed-secrets

  View on GitHub
  A Kubernetes controller and tool for one-way encrypted Secrets
  ☆8,901Updated this week
• GoogleContainerTools / kaniko

  View on GitHub
  Build Container Images In Kubernetes
  ☆15,746Jun 3, 2025Updated 8 months ago
• cilium / cilium

  View on GitHub
  eBPF-based Networking, Security, and Observability
  ☆23,695Updated this week
• cilium / tetragon

  View on GitHub
  eBPF-based Security Observability and Runtime Enforcement
  ☆4,405Feb 10, 2026Updated last week
• opencost / opencost

  View on GitHub
  Cost monitoring for Kubernetes workloads and cloud costs
  ☆6,362Feb 9, 2026Updated last week
• open-policy-agent / opa

  View on GitHub
  Open Policy Agent (OPA) is an open source, general-purpose policy engine.
  ☆11,219Updated this week
• siderolabs / talos

  View on GitHub
  Talos Linux is a modern Linux distribution built for Kubernetes.
  ☆9,881Updated this week
• oras-project / oras

  View on GitHub
  OCI registry client - managing content like artifacts, images, packages
  ☆2,120Feb 10, 2026Updated last week
• aquasecurity / kube-bench

  View on GitHub
  Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
  ☆7,940Updated this week
• cert-manager / cert-manager

  View on GitHub
  Automatically provision and manage TLS certificates in Kubernetes
  ☆13,563Updated this week
• sigstore / sigstore

  View on GitHub
  Common go library shared across sigstore services and clients
  ☆498Updated this week
• quay / clair

  View on GitHub
  Vulnerability Static Analysis for Containers
  ☆10,928Updated this week
• containers / buildah

  View on GitHub
  A tool that facilitates building OCI images.
  ☆8,606Updated this week
• kubeshark / kubeshark

  View on GitHub
  AI-ready API traffic analyzer for Kubernetes, providing deep packet inspection with complete API and Kubernetes contexts, retaining clust…
  ☆11,775Updated this week
• FiloSottile / age

  View on GitHub
  A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.
  ☆21,273Feb 2, 2026Updated 2 weeks ago
• kedacore / keda

  View on GitHub
  KEDA is a Kubernetes-based Event Driven Autoscaling component. It provides event driven scale for any container running in Kubernetes
  ☆9,898Feb 10, 2026Updated last week
• slsa-framework / slsa

  View on GitHub
  Supply-chain Levels for Software Artifacts
  ☆1,809Updated this week
• dexidp / dex

  View on GitHub
  OpenID Connect (OIDC) identity and OAuth 2.0 provider with pluggable connectors
  ☆10,588Updated this week
• vmware-tanzu / velero

  View on GitHub
  Backup and migrate Kubernetes applications and their persistent volumes
  ☆9,798Feb 10, 2026Updated last week
• aws / karpenter-provider-aws

  View on GitHub
  Karpenter is a Kubernetes Node Autoscaler built for flexibility, performance, and simplicity.
  ☆7,559Updated this week
• open-policy-agent / conftest

  View on GitHub
  Write tests against structured configuration data using the Open Policy Agent Rego query language
  ☆3,121Feb 9, 2026Updated last week