Alternatives and similar repositories for cosign

Users that are interested in cosign are comparing it to the libraries listed below

• google / go-containerregistry
  Go library and CLIs for working with container registries
  ☆3,631Updated last week
• falcosecurity / falco
  Cloud Native Runtime Security
  ☆8,443Updated last week
• aquasecurity / kube-bench
  Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark
  ☆7,837Updated this week
• anchore / syft
  CLI tool and library for generating a Software Bill of Materials from container images and filesystems
  ☆8,088Updated this week
• open-policy-agent / gatekeeper
  🐊 Policy Controller for Kubernetes
  ☆4,077Updated last week
• containerd / nerdctl
  contaiNERD CTL - Docker-compatible CLI for containerd, with support for Compose, Rootless, eStargz, OCIcrypt, IPFS, ...
  ☆9,628Updated this week
• stackrox / kube-linter
  KubeLinter is a static analysis tool that checks Kubernetes YAML files and Helm charts to ensure the applications represented in them adh…
  ☆3,348Updated this week
• zegl / kube-score
  Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in …
  ☆3,002Updated this week
• chainguard-dev / apko
  Build OCI images from APK packages directly without Dockerfile
  ☆1,474Updated this week
• slsa-framework / slsa
  Supply-chain Levels for Software Artifacts
  ☆1,770Updated 2 weeks ago
• bitnami-labs / sealed-secrets
  A Kubernetes controller and tool for one-way encrypted Secrets
  ☆8,745Updated this week
• open-policy-agent / conftest
  Write tests against structured configuration data using the Open Policy Agent Rego query language
  ☆3,078Updated last week
• oras-project / oras
  OCI registry client - managing content like artifacts, images, packages
  ☆2,035Updated this week
• spiffe / spire
  The SPIFFE Runtime Environment
  ☆2,148Updated this week
• opencost / opencost
  Cost monitoring for Kubernetes workloads and cloud costs
  ☆6,203Updated this week
• containers / skopeo
  Work with remote images registries - retrieving information, images, signing content
  ☆10,142Updated this week
• FairwindsOps / polaris
  Validation of best practices in your Kubernetes clusters
  ☆3,334Updated this week
• external-secrets / external-secrets
  External Secrets Operator reads information from a third-party service like AWS Secrets Manager and automatically injects the values as K…
  ☆6,196Updated this week
• quay / clair
  Vulnerability Static Analysis for Containers
  ☆10,877Updated last week
• smallstep / cli
  🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.
  ☆4,072Updated this week
• aquasecurity / kube-hunter
  Hunt for security weaknesses in Kubernetes clusters
  ☆4,976Updated last year
• cilium / hubble
  Hubble - Network, Service & Security Observability for Kubernetes using eBPF
  ☆4,012Updated 2 weeks ago
• containers / buildah
  A tool that facilitates building OCI images.
  ☆8,478Updated this week
• anchore / grype
  A vulnerability scanner for container images and filesystems
  ☆11,155Updated this week
• derailed / popeye
  👀 A Kubernetes cluster resource sanitizer
  ☆6,186Updated last week
• notaryproject / notary
  Notary is a project that allows anyone to have trust over arbitrary collections of data
  ☆3,281Updated last year
• inspektor-gadget / inspektor-gadget
  Inspektor Gadget is a set of tools and framework for data collection and system inspection on Kubernetes clusters and Linux hosts using e…
  ☆2,640Updated this week
• kubernetes-sigs / krew
  📦 Find and install kubectl plugins
  ☆6,834Updated 4 months ago
• sigstore / rekor
  Software Supply Chain Transparency Log
  ☆1,039Updated last week
• nestybox / sysbox
  An open-source, next-generation "runc" that empowers rootless containers to run workloads such as Systemd, Docker, Kubernetes, just like …
  ☆3,372Updated last month