Alternatives and similar repositories for sigstore-python

Users that are interested in sigstore-python are comparing it to the libraries listed below

• sigstore / gh-action-sigstore-python
  A GitHub Action for sigstore-python
  ☆52Updated 2 weeks ago
• psf / advisory-database
  This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)
  ☆35Updated 2 months ago
• pypa / gh-action-pip-audit
  A GitHub Action for pip-audit
  ☆74Updated last week
• sethmlarson / pypi-data
  Data about packages and maintainers on PyPI
  ☆128Updated 3 weeks ago
• ossf / sbom-everywhere
  Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption
  ☆91Updated 2 weeks ago
• slsa-framework / slsa-verifier
  Verify provenance from SLSA compliant builders
  ☆261Updated last month
• CycloneDX / cyclonedx-python-lib
  Python implementation of OWASP CycloneDX
  ☆80Updated this week
• psf / sboms-for-python-packages
  Software Bill-of-Materials documents for Python packages
  ☆37Updated 2 months ago
• abravalheri / validate-pyproject
  Validation library for simple check on `pyproject.toml`
  ☆158Updated last week
• spdx / tools-python
  A Python library to parse, validate and create SPDX documents.
  ☆209Updated 3 weeks ago
• secure-systems-lab / securesystemslib
  Cryptographic and general-purpose routines for Secure Systems Lab projects at NYU
  ☆49Updated this week
• dlint-py / dlint
  Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.
  ☆166Updated 6 months ago
• repository-service-tuf / repository-service-tuf
  Umbrella Repository Service for TUF
  ☆50Updated this week
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆106Updated this week
• sigstore / fulcio
  Sigstore OIDC PKI
  ☆720Updated this week
• pypi / inspector
  🕵️ File browser for distributions on PyPI
  ☆103Updated this week
• psf / fundable-packaging-improvements
  Packaging improvements that could be funded
  ☆54Updated 2 years ago
• pypa / advisory-database
  Advisory database for Python packages published on pypi.org
  ☆288Updated this week
• sethmlarson / truststore
  Verify certificates using OS trust stores
  ☆184Updated 3 months ago
• gittuf / gittuf
  A security layer for Git repositories
  ☆519Updated this week
• sigstore / rekor-monitor
  Log monitor for Rekor to verify immutability and monitor entries
  ☆32Updated this week
• package-url / packageurl-python
  Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…
  ☆73Updated last month
• pypa / abi3audit
  Scans Python packages for abi3 violations and inconsistencies
  ☆110Updated this week
• stacklok / frizbee
  Throw a tag at it and it comes back with a checksum.
  ☆133Updated this week
• snyk / parlay
  Enrich SBOMs with data from third party services
  ☆172Updated last month
• nedbat / scriv
  Changelog management tool
  ☆278Updated last week
• ossf / osv-schema
  Open Source Vulnerability schema.
  ☆200Updated last week
• in-toto / attestation
  in-toto Attestation Framework
  ☆272Updated this week
• aboutcode-org / license-expression
  Utility library to parse, normalize and compare License expressions for Python using a boolean logic engine. For expressions using SPDX …
  ☆66Updated last month
• github / annotated-logger
  A decorator to aid in annotating logs for easier reading and searching
  ☆85Updated this week