sigstore / sigstore-pythonLinks
A Sigstore client written in Python
☆269Updated this week
Alternatives and similar repositories for sigstore-python
Users that are interested in sigstore-python are comparing it to the libraries listed below
Sorting:
- A GitHub Action for sigstore-python☆52Updated last week
- A GitHub Action for pip-audit☆74Updated last week
- This is a repository of vulnerability advisories for projects in scope for the Python Software Foundation CVE Numbering Authority (CNA)☆35Updated 3 weeks ago
- Improve Software Bill of Materials (SBOM) tooling and training to encourage adoption☆92Updated last week
- Verify provenance from SLSA compliant builders☆263Updated 2 weeks ago
- Data about packages and maintainers on PyPI☆128Updated last month
- Umbrella Repository Service for TUF☆50Updated this week
- Python implementation of the package url spec. This project is sponsored by NLnet project https://nlnet.nl/project/vulnerabilitydatabase…☆74Updated last week
- A Python library to parse, validate and create SPDX documents.☆211Updated last month
- Software Bill-of-Materials documents for Python packages☆39Updated 3 months ago
- A security layer for Git repositories☆525Updated this week
- Format agnostic SBOM tooling☆106Updated this week
- Python implementation of OWASP CycloneDX☆82Updated this week
- Sigstore OIDC PKI☆726Updated this week
- Verify certificates using OS trust stores☆185Updated 3 months ago
- 🕵️ File browser for distributions on PyPI☆104Updated 2 weeks ago
- Log monitor for Rekor to verify immutability and monitor entries☆34Updated this week
- Throw a tag at it and it comes back with a checksum.☆136Updated this week
- OpenSSF Working Group on Securing Software Repositories☆107Updated last week
- Advisory database for Python packages published on pypi.org☆290Updated this week
- A tool to generate a SBOM (Software Bill of Materials) for an installed Python module☆33Updated 2 months ago
- TUF repository for Sigstore trust root☆103Updated this week
- A decorator to aid in annotating logs for easier reading and searching☆86Updated this week
- Machine-readable specification for the attestation of security-relevant data.☆59Updated 3 weeks ago
- in-toto Attestation Framework☆274Updated 2 weeks ago
- Validation library for simple check on `pyproject.toml`☆160Updated this week
- A guide on coordinated vulnerability disclosure for open source projects. Includes templates for security policies (security.md) and disc…☆121Updated 4 months ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆96Updated last week
- Packaging improvements that could be funded☆54Updated 2 years ago
- The model for the information captured in SPDX version 3 standard.☆83Updated last week