sigstore / docsLinks
Sigstore documentation
☆90Updated last week
Alternatives and similar repositories for docs
Users that are interested in docs are comparing it to the libraries listed below
Sorting:
- Sigstore's Protocol Buffer specifications☆32Updated this week
- Go library for Sigstore signing and verification☆68Updated last week
- Verify provenance from SLSA compliant builders☆263Updated 2 weeks ago
- TUF repository for Sigstore trust root☆103Updated this week
- CLOMonitor is a tool that periodically checks open source projects repositories to verify they meet certain project health best practices☆128Updated this week
- A CLI used to work with the Wolfi OSS project☆62Updated this week
- GitVote is a GitHub application that allows holding a vote on issues and pull requests☆123Updated this week
- in-toto is a framework to secure the software supply chain.☆70Updated 4 months ago
- Helm charts for sigstore project☆76Updated this week
- CLOWarden is a tool that manages access to resources across multiple services☆51Updated last week
- Resources for the deps.dev API☆322Updated last week
- Code-signing for npm packages☆162Updated 2 weeks ago
- Go module to generate and transform VEX documents☆42Updated 2 weeks ago
- Deploy custom push protections and policies on top of Git☆149Updated this week
- A collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project specifications.☆42Updated 3 weeks ago
- ☆19Updated this week
- Cosign Github Action☆148Updated 3 weeks ago
- 📈CNCF-created tool for analyzing and graphing developer contributions☆94Updated last week
- Transaction Tokens Service☆42Updated 3 weeks ago
- OpenVEX Specification☆150Updated this week
- in-toto Attestation Framework☆274Updated 2 weeks ago
- Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supp…☆132Updated this week
- GitHub Action for creating software bill of materials using Syft.☆188Updated 2 weeks ago
- Search Rekor for entries☆34Updated 2 months ago
- Golang implementation of a checker for determining if an SPDX ID satisfies an SPDX Expression.☆38Updated this week
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆62Updated 2 weeks ago
- Operator is an in-cluster component of the Kubescape security platform. It allows clients to connect to itself, listens for commands from…☆18Updated 2 weeks ago
- A specification for signing methods and formats used by Secure Systems Lab projects.☆78Updated 8 months ago
- Cross tooling and interoperability specifications☆170Updated 2 weeks ago
- a fast changelog generator sourced from PRs and Issues☆59Updated last week