Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supply-chain metadata from cosign
☆158Feb 16, 2026Updated 2 weeks ago
Alternatives and similar repositories for policy-controller
Users that are interested in policy-controller are comparing it to the libraries listed below
Sorting:
- Helm charts for sigstore project☆88Feb 23, 2026Updated last week
- ☆20Feb 5, 2026Updated 3 weeks ago
- A utility to generate SPDX-compliant Bill of Materials manifests☆443Updated this week
- Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.☆73Feb 23, 2026Updated last week
- 🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sig…☆79Dec 4, 2025Updated 2 months ago
- Log monitor for Rekor to verify immutability and monitor entries☆47Feb 23, 2026Updated last week
- Language-agnostic SLSA provenance generation for Github Actions☆549Updated this week
- kubectl plugin for signing Kubernetes manifest YAML files with sigstore☆85Updated this week
- sigstore installation walkthrough, local☆62Dec 8, 2025Updated 2 months ago
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆72Updated this week
- Search Rekor for entries☆39Updated this week
- Sigstore OIDC PKI☆807Feb 23, 2026Updated last week
- Keyless Git signing using Sigstore☆1,063Feb 23, 2026Updated last week
- sigstore the hard way!☆118Aug 6, 2025Updated 6 months ago
- ☆31Updated this week
- The Kubernetes Security Profiles Operator☆834Updated this week
- Plugin for Helm to integrate the sigstore ecosystem☆67Updated this week
- In this repository, the development of the gardener extension, which deploys the flux controllers automatically to shoot clusters, takes …☆26Apr 11, 2025Updated 10 months ago
- Simple tool that allows you to detect imposter commits in GitHub Actions workflows.☆26Dec 17, 2024Updated last year
- vexctl is a tool to attest VEX impact statements☆45Mar 27, 2023Updated 2 years ago
- Software Supply Chain Transparency Log☆1,088Feb 23, 2026Updated last week
- Lambda function for verifying signed images in ECS☆37Mar 9, 2024Updated last year
- TUF repository for Sigstore trust root☆118Updated this week
- Helm Chart for deploying GUAC☆18Feb 23, 2026Updated last week
- ☆24Feb 17, 2026Updated last week
- A Kubernetes controller for CUE via Flux☆69Nov 22, 2023Updated 2 years ago
- ☆255Feb 23, 2026Updated last week
- Common go library shared across sigstore services and clients☆502Updated this week
- Code signing and transparency for containers and binaries☆5,683Updated this week
- ☆14Sep 20, 2023Updated 2 years ago
- A Kubernetes admission controller driven by open-feature☆14Apr 3, 2023Updated 2 years ago
- How small can a Java application container image be☆21Feb 17, 2023Updated 3 years ago
- Supply Chain Security in Tekton Pipelines☆269Updated this week
- An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster☆470Updated this week
- Verify provenance from SLSA compliant builders☆310Nov 20, 2025Updated 3 months ago
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆33Apr 22, 2025Updated 10 months ago
- A tool to create, transform and attest VEX metadata☆176Updated this week
- Helm charts for verifying artifact attestations in Kubernetes☆21Feb 23, 2026Updated last week
- Transparenty Immutable Container Image Tags☆20Jul 5, 2023Updated 2 years ago