sigstore / sigstore-python
A Sigstore client written in Python
☆257Updated this week
Alternatives and similar repositories for sigstore-python:
Users that are interested in sigstore-python are comparing it to the libraries listed below
- A GitHub Action for sigstore-python☆50Updated 2 months ago
- This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)☆31Updated last month
- A GitHub Action for pip-audit☆73Updated 2 months ago
- Software Bill-of-Materials documents for Python packages☆35Updated last month
- Data about packages and maintainers on PyPI☆126Updated 3 weeks ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆86Updated last week
- Umbrella Repository Service for TUF☆46Updated this week
- Format agnostic SBOM tooling☆102Updated this week
- Verify provenance from SLSA compliant builders☆252Updated this week
- Python implementation of OWASP CycloneDX☆79Updated this week
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆74Updated 5 months ago
- Scans Python packages for abi3 violations and inconsistencies☆108Updated this week
- Throw a tag at it and it comes back with a checksum.☆116Updated last week
- A security layer for Git repositories☆501Updated this week
- OpenVEX Specification☆144Updated this week
- Generate SBOMs with gh CLI☆179Updated 6 months ago
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆119Updated 2 months ago
- Advisory database for Python packages published on pypi.org☆276Updated this week
- Sbommage is an interactive terminal frontend for viewing Software Bill of Materials (SBOM) files in various formats.☆26Updated last month
- A Python library to parse, validate and create SPDX documents.☆206Updated 6 months ago
- Open Source Vulnerability schema.☆196Updated this week
- Validation library for simple check on `pyproject.toml`☆156Updated this week
- Dlint is a tool for encouraging best coding practices and helping ensure Python code is secure.☆165Updated 5 months ago
- CycloneDX Software Bill of Materials (SBOM) generator for Python projects and environments☆276Updated this week
- TUF repository for Sigstore trust root☆96Updated this week
- Safe, minimal import sorting for Python projects.☆193Updated 6 months ago
- A decorator to aid in annotating logs for easier reading and searching☆85Updated this week
- Sigstore OIDC PKI☆698Updated this week
- Verify certificates using OS trust stores☆183Updated last month
- Generate a score for your sbom to understand if it will actually be useful.☆227Updated 7 months ago