Go library for Sigstore signing and verification
☆86Mar 5, 2026Updated this week
Alternatives and similar repositories for sigstore-go
Users that are interested in sigstore-go are comparing it to the libraries listed below
Sorting:
- Sigstore's Protocol Buffer specifications☆34Mar 2, 2026Updated last week
- Go library for Sigstore signing and verification☆18Sep 29, 2023Updated 2 years ago
- Log monitor for Rekor to verify immutability and monitor entries☆48Mar 2, 2026Updated last week
- java clients for sigstore☆74Updated this week
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆108Mar 2, 2026Updated last week
- Go implementation of The Update Framework heavily influenced by python-tuf☆14Mar 7, 2024Updated 2 years ago
- Powering the OpenTofu Registry Search (beta)☆20Feb 24, 2026Updated last week
- TUF repository for Sigstore trust root☆120Updated this week
- Security advisory data for Wolfi☆20Jan 7, 2026Updated 2 months ago
- A collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project specifications.☆42Feb 16, 2026Updated 3 weeks ago
- Friends of in-toto! A place to record integrations and adoptions of the in-toto specification.☆21Mar 2, 2026Updated last week
- oci and apk explorer☆102Dec 17, 2025Updated 2 months ago
- Common go library shared across sigstore services and clients☆502Updated this week
- A specification for signing methods and formats used by Secure Systems Lab projects.☆94Nov 10, 2025Updated 3 months ago
- in-toto Enhancements☆20Feb 17, 2025Updated last year
- Go app that exposes pprof profiling endpoints via HTTP.☆22Aug 11, 2025Updated 6 months ago
- A TUF repository and signing tool☆42Updated this week
- Code-signing for npm packages☆178Mar 2, 2026Updated last week
- sigstore maven plugin☆19Jul 22, 2024Updated last year
- Sigstore user stories☆31Aug 25, 2023Updated 2 years ago
- Kyverno extension service for Notation and the AWS signer☆15Updated this week
- A Go implementation of in-toto. in-toto is a framework to protect software supply chain integrity.☆145Feb 27, 2026Updated last week
- demo of keyless signing with the sigstore kubernetes policy controller☆11Sep 7, 2022Updated 3 years ago
- Terraform provider to perform OCI image operations☆15Updated this week
- Cloud Storage Kubernetes Operator with Go and Operator SDK☆12Nov 20, 2020Updated 5 years ago
- SLSA Proposals☆11Jan 29, 2024Updated 2 years ago
- Language-agnostic SLSA provenance generation for Github Actions☆549Feb 28, 2026Updated last week
- in-toto Attestation Framework☆326Updated this week
- Docker image for TPM 2.0 development from TPM.dev☆14Sep 5, 2023Updated 2 years ago
- ☆12Aug 8, 2019Updated 6 years ago
- Showcasing the potential of SPIFFE with real-life services☆10Jan 27, 2026Updated last month
- A Kubewarden Policy that verifies all the signatures of the container images referenced by a Pod☆13Jan 20, 2026Updated last month
- Contains support for Notary Project signature envelope, and format specific implementation☆15Feb 9, 2026Updated last month
- Witness Examples☆12Feb 27, 2024Updated 2 years ago
- SLSA level 3 action☆11Apr 26, 2024Updated last year
- A High-Availability distribution of Knative.☆20Mar 20, 2024Updated last year
- A hub-and-spoke example for multi-cluster continuous delivery with Flux☆41Dec 17, 2024Updated last year
- Notary Project Website☆27Nov 10, 2025Updated 3 months ago
- Trust Dexter to ensure that all your images are pinned by digest for better security☆31Nov 8, 2023Updated 2 years ago