sigstore/sigstore-js external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

sigstore/sigstore-js

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/sigstore/sigstore-js)

Close

sigstore / sigstore-jsView on GitHubMore

• External links
• Readme badge

Code-signing for npm packages

☆178Mar 2, 2026Updated this week

Alternatives and similar repositories for sigstore-js

Users that are interested in sigstore-js are comparing it to the libraries listed below

• sigstore / scaffolding

  View on GitHub
  Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.
  ☆75Updated this week
• chainguard-dev / actions

  View on GitHub
  A collection of reusable Github Actions workflows.
  ☆159Updated this week
• sigstore / community

  View on GitHub
  General sigstore community repo
  ☆44Feb 27, 2026Updated last week
• kubernetes-sigs / tejolote

  View on GitHub
  A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.
  ☆73Updated this week
• sigstore / helm-charts

  View on GitHub
  Helm charts for sigstore project
  ☆90Updated this week
• chainguard-dev / ssc-reading-list

  View on GitHub
  A reading list for software supply-chain security.
  ☆365Nov 21, 2022Updated 3 years ago
• ko-build / terraform-provider-ko

  View on GitHub
  Build and deploy Go applications with Terraform
  ☆30Updated this week
• sigstore / sigstore-java

  View on GitHub
  java clients for sigstore
  ☆74Updated this week
• sigstore / gitsign

  View on GitHub
  Keyless Git signing using Sigstore
  ☆1,066Updated this week
• sigstore / sigstore-go

  View on GitHub
  Go library for Sigstore signing and verification
  ☆84Feb 23, 2026Updated last week
• sigstore / fulcio

  View on GitHub
  Sigstore OIDC PKI
  ☆810Updated this week
• opencontrolplane / opencp-shim

  View on GitHub
  OpenCP shim is a simple HTTP server that implements the Kubernetes API server interface. It is a shim that allows you to use the Kubernet…
  ☆14Mar 16, 2023Updated 2 years ago
• wlynch / smimecosign

  View on GitHub
  Keyless Git signing with cosign!
  ☆11May 12, 2022Updated 3 years ago
• sigstore / root-signing

  View on GitHub
  TUF repository for Sigstore trust root
  ☆120Updated this week
• sigstore / helm-sigstore

  View on GitHub
  Plugin for Helm to integrate the sigstore ecosystem
  ☆68Feb 27, 2026Updated last week
• sigstore / rekor-search-ui

  View on GitHub
  Search Rekor for entries
  ☆39Updated this week
• chainguard-dev / apko

  View on GitHub
  Build OCI images from APK packages directly without Dockerfile
  ☆1,560Updated this week
• wolfi-dev / wolfi-act

  View on GitHub
  Dynamic GitHub Actions from Wolfi packages
  ☆44May 15, 2025Updated 9 months ago
• deislabs / image-layer-provenance

  View on GitHub
  Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.
  ☆45Oct 30, 2023Updated 2 years ago
• chainguard-dev / go-apk

  View on GitHub
  native go library for installation and management of apk packages
  ☆32Jun 5, 2024Updated last year
• theupdateframework / tuf-js

  View on GitHub
  JavaScript implementation of The Update Framework (TUF)
  ☆81Feb 23, 2026Updated last week
• sigstore / cosign

  View on GitHub
  Code signing and transparency for containers and binaries
  ☆5,700Updated this week
• sigstore / sigstore

  View on GitHub
  Common go library shared across sigstore services and clients
  ☆502Updated this week
• betagouv / tell-me

  View on GitHub
  An awesome open source Survey Management System.
  ☆17Mar 20, 2024Updated last year
• sigstore / rekor

  View on GitHub
  Software Supply Chain Transparency Log
  ☆1,092Updated this week
• kubernetes-sigs / bom

  View on GitHub
  A utility to generate SPDX-compliant Bill of Materials manifests
  ☆443Feb 26, 2026Updated last week
• phuongdnguyen / poorman-registry

  View on GitHub
  Free 0-CVE Images
  ☆34Jul 10, 2024Updated last year
• tektoncd / chains

  View on GitHub
  Supply Chain Security in Tekton Pipelines
  ☆270Updated this week
• chainguard-dev / melange

  View on GitHub
  build APKs from source code
  ☆577Updated this week
• chainguard-dev / nginx-image-demo

  View on GitHub
  nginx image demo
  ☆19Sep 11, 2023Updated 2 years ago
• stacklok / sigstore-the-hard-way

  View on GitHub
  sigstore the hard way!
  ☆118Aug 6, 2025Updated 7 months ago
• chainguard-dev / tlogistry

  View on GitHub
  Transparenty Immutable Container Image Tags
  ☆20Jul 5, 2023Updated 2 years ago
• chainguard-dev / cosign-ecs-verify

  View on GitHub
  Lambda function for verifying signed images in ECS
  ☆37Mar 9, 2024Updated last year
• chainguard-dev / darkfiles

  View on GitHub
  Darkfiles finds orphaned files in container images and makes them to bad deeds
  ☆42May 11, 2023Updated 2 years ago
• goreleaser / example-supply-chain

  View on GitHub
  Example goreleaser + github actions config with keyless signing, SBOM generation, and attestations
  ☆59Updated this week
• sigstore / friends

  View on GitHub
  Sigstore user stories
  ☆31Aug 25, 2023Updated 2 years ago
• slsa-framework / slsa-github-generator-go

  View on GitHub
  ☆58Jun 1, 2022Updated 3 years ago
• imjasonh / kontain.me

  View on GitHub
  Container image registry that serves images built fresh when you ask for them
  ☆238Feb 14, 2025Updated last year
• imjasonh / setup-crane

  View on GitHub
  ☆29Feb 4, 2026Updated last month