Code signing and transparency for containers and binaries
☆6,124Jul 13, 2026Updated this week
Alternatives and similar repositories for cosign
Users that are interested in cosign are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Software Supply Chain Transparency Log☆1,177Updated this week
- Sigstore OIDC PKI☆863Updated this week
- Keyless Git signing using Sigstore☆1,110Updated this week
- CLI tool and library for generating a Software Bill of Materials from container images and filesystems☆9,234Updated this week
- Unified Policy as Code☆7,922Updated this week
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A vulnerability scanner for container images and filesystems☆12,559Updated this week
- Common go library shared across sigstore services and clients☆531Updated this week
- Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more☆36,919Updated this week
- Build OCI images from APK packages directly without Dockerfile☆1,649Updated this week
- Work with remote images registries - retrieving information, images, signing content☆11,064Updated this week
- Kubescape is an open-source Kubernetes security platform for your IDE, CI/CD pipelines, and clusters. It includes risk analysis, security…☆11,532Updated this week
- Build and deploy Go applications☆8,474Updated this week
- Cloud Native Runtime Security☆9,150Updated this week
- 🥑 Language focused docker images, minus the operating system.☆22,824Updated this week
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Simple and flexible tool for managing secrets☆22,484Updated this week
- 🐊 Policy Controller for Kubernetes☆4,241Updated this week
- Go library and CLIs for working with container registries☆3,974Updated this week
- OCI registry client - managing content like artifacts, images, packages☆2,349Updated this week
- Build Container Images In Kubernetes☆15,783Jun 3, 2025Updated last year
- contaiNERD CTL - Docker-compatible CLI for containerd, with support for Compose, Rootless, eStargz, OCIcrypt, IPFS, ...☆10,226Updated this week
- eBPF-based Security Observability and Runtime Enforcement☆4,827Updated this week
- The Cloud Native Control Plane☆11,856Updated this week
- Open Policy Agent (OPA) is an open source, general-purpose policy engine.☆11,983Updated this week
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- A Kubernetes controller and tool for one-way encrypted Secrets☆9,196Updated this week
- Supply-chain Levels for Software Artifacts☆1,888Jun 23, 2026Updated 3 weeks ago
- eBPF-based Networking, Security, and Observability☆24,718Updated this week
- Cost monitoring for Kubernetes workloads and cloud costs☆6,635Updated this week
- Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark☆8,104Updated this week
- in-toto is a framework to protect supply chain integrity.☆1,016Updated this week
- Automatically provision and manage TLS certificates in Kubernetes☆13,930Updated this week
- Talos Linux is a modern Linux distribution built for Kubernetes.☆10,777Updated this week
- Vulnerability Static Analysis for Containers☆11,024Updated this week
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- eBPF-powered network observability for Kubernetes. Indexes L4/L7 traffic with full K8s context, decrypts TLS without keys. Queryable by A…☆11,999Jul 6, 2026Updated last week
- A tool that facilitates building OCI images.☆8,925Updated this week
- Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supp…☆176Updated this week
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆3,221Updated this week
- OpenSSF Scorecard - Security health metrics for Open Source☆5,580Updated this week
- A simple, modern and secure encryption tool (and Go library) with small explicit keys, no config options, and UNIX-style composability.☆22,869Mar 20, 2026Updated 3 months ago
- OpenID Connect (OIDC) identity and OAuth 2.0 provider with pluggable connectors☆10,958Updated this week