sigstore / sigstore-python

Related projects ⓘ

Alternatives and complementary repositories for sigstore-python

• sigstore / gh-action-sigstore-python
  A GitHub Action for sigstore-python
  ☆46Updated last month
• pypa / gh-action-pip-audit
  A GitHub Action for pip-audit
  ☆68Updated last week
• psf / advisory-database
  This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)
  ☆28Updated last week
• sethmlarson / pypi-data
  Data about packages and maintainers on PyPI
  ☆123Updated this week
• slsa-framework / slsa-verifier
  Verify provenance from SLSA compliant builders
  ☆230Updated 3 weeks ago
• repository-service-tuf / repository-service-tuf
  Umbrella Repository Service for TUF
  ☆41Updated this week
• ossf / sbom-everywhere
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆72Updated last month
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆80Updated this week
• dlint-py / dlint
  Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.
  ☆164Updated 3 weeks ago
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆189Updated last month
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆70Updated this week
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆71Updated 3 weeks ago
• sigstore / root-signing
  TUF repository for Sigstore trust root
  ☆88Updated this week
• psf / sboms-for-python-packages
  Software Bill-of-Materials documents for Python packages
  ☆22Updated last week
• pypa / advisory-database
  Advisory database for Python packages published on pypi.org
  ☆264Updated this week
• gittuf / gittuf
  A security layer for Git repositories
  ☆465Updated this week
• advanced-security / gh-sbom
  Generate SBOMs with gh CLI
  ☆166Updated 2 months ago
• abravalheri / validate-pyproject
  Validation library for simple check on `pyproject.toml`
  ☆135Updated this week
• sigstore / rekor-monitor
  Log monitor for Rekor to verify immutability and monitor entries
  ☆26Updated this week
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆185Updated this week
• pytest-dev / pytest-github-actions-annotate-failures
  Pytest plugin to annotate failed tests with a workflow command for GitHub Actions
  ☆140Updated 2 weeks ago
• python-jsonschema / check-jsonschema
  A CLI and set of pre-commit hooks for jsonschema validation with built-in support for GitHub Workflows, Renovate, Azure Pipelines, and mo…
  ☆219Updated this week
• ossf / wg-securing-software-repos
  OpenSSF Working Group on Securing Software Repositories
  ☆91Updated 3 weeks ago
• anthonyharrison / sbom4python
  A tool to generate a SBOM (Software Bill of Materials) for an installed Python module
  ☆25Updated last month
• facebook / usort
  Safe, minimal import sorting for Python projects.
  ☆190Updated last month
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆117Updated 2 weeks ago
• stacklok / frizbee
  Throw a tag at it and it comes back with a checksum.
  ☆87Updated this week
• sethmlarson / truststore
  Verify certificates using OS trust stores
  ☆161Updated 3 weeks ago
• psf / fundable-packaging-improvements
  Packaging improvements that could be funded
  ☆52Updated last year
• kushaldas / johnnycanencrypt
  Python module for OpenPGP written in Rust.
  ☆52Updated last month