sigstore / sigstore-goView external linksLinks
Go library for Sigstore signing and verification
☆83Updated this week
Alternatives and similar repositories for sigstore-go
Users that are interested in sigstore-go are comparing it to the libraries listed below
Sorting:
- Sigstore's Protocol Buffer specifications☆34Feb 9, 2026Updated last week
- Go library for Sigstore signing and verification☆18Sep 29, 2023Updated 2 years ago
- Log monitor for Rekor to verify immutability and monitor entries☆45Updated this week
- java clients for sigstore☆72Updated this week
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆106Updated this week
- Go implementation of The Update Framework heavily influenced by python-tuf☆14Mar 7, 2024Updated last year
- Powering the OpenTofu Registry Search (beta)☆20Jan 28, 2026Updated 2 weeks ago
- TUF repository for Sigstore trust root☆118Updated this week
- Security advisory data for Wolfi☆20Jan 7, 2026Updated last month
- A collection of libraries for supporting sign and verify OCI artifacts. Based on Notary Project specifications.☆42Feb 4, 2026Updated last week
- Friends of in-toto! A place to record integrations and adoptions of the in-toto specification.☆20Updated this week
- oci and apk explorer☆100Dec 17, 2025Updated last month
- Common go library shared across sigstore services and clients☆498Updated this week
- A specification for signing methods and formats used by Secure Systems Lab projects.☆94Nov 10, 2025Updated 3 months ago
- in-toto Enhancements☆19Feb 17, 2025Updated 11 months ago
- Go app that exposes pprof profiling endpoints via HTTP.☆22Aug 11, 2025Updated 6 months ago
- A TUF repository and signing tool☆43Feb 3, 2026Updated last week
- Code-signing for npm packages☆178Updated this week
- Sigstore user stories☆30Aug 25, 2023Updated 2 years ago
- sigstore maven plugin☆19Jul 22, 2024Updated last year
- Kyverno extension service for Notation and the AWS signer☆15Updated this week
- A Go implementation of in-toto. in-toto is a framework to protect software supply chain integrity.☆144Jan 23, 2026Updated 3 weeks ago
- demo of keyless signing with the sigstore kubernetes policy controller☆11Sep 7, 2022Updated 3 years ago
- Terraform provider to perform OCI image operations☆15Updated this week
- Cloud Storage Kubernetes Operator with Go and Operator SDK☆12Nov 20, 2020Updated 5 years ago
- SLSA Proposals☆11Jan 29, 2024Updated 2 years ago
- Language-agnostic SLSA provenance generation for Github Actions☆546Oct 20, 2025Updated 3 months ago
- in-toto Attestation Framework☆323Updated this week
- A hub-and-spoke example for multi-cluster continuous delivery with Flux☆40Dec 17, 2024Updated last year
- Witness Examples☆12Feb 27, 2024Updated last year
- Docker image for TPM 2.0 development from TPM.dev☆14Sep 5, 2023Updated 2 years ago
- Showcasing the potential of SPIFFE with real-life services☆10Jan 27, 2026Updated 2 weeks ago
- ☆12Aug 8, 2019Updated 6 years ago
- A template repository to quickly scaffold a Kubewarden policy written with Go language☆11Updated this week
- Contains support for Notary Project signature envelope, and format specific implementation☆15Updated this week
- A Kubewarden Policy that verifies all the signatures of the container images referenced by a Pod☆13Jan 20, 2026Updated 3 weeks ago
- A High-Availability distribution of Knative.☆20Mar 20, 2024Updated last year
- SLSA level 3 action☆11Apr 26, 2024Updated last year
- Notary Project Website☆27Nov 10, 2025Updated 3 months ago