step-security / agentLinks
Purpose-built security agent for hosted runners
☆36Updated 3 weeks ago
Alternatives and similar repositories for agent
Users that are interested in agent are comparing it to the libraries listed below
Sorting:
- ☆56Updated 3 years ago
- Orchestrate GitHub Actions Security☆285Updated this week
- Go library for Sigstore signing and verification☆68Updated last week
- Format agnostic SBOM tooling☆106Updated this week
- A tool to create, transform and attest VEX metadata☆138Updated last week
- A specification for signing methods and formats used by Secure Systems Lab projects.☆78Updated 8 months ago
- Throw a tag at it and it comes back with a checksum.☆136Updated this week
- Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks☆31Updated last month
- Go module to generate and transform VEX documents☆41Updated 2 weeks ago
- Enrich SBOMs with data from third party services☆173Updated 2 months ago
- Proof-of-concept SLSA provenance generator for GitHub Actions☆99Updated 2 years ago
- TUF repository for Sigstore trust root☆103Updated this week
- Verify provenance from SLSA compliant builders☆262Updated last week
- Log monitor for Rekor to verify immutability and monitor entries☆34Updated last week
- Simplify OpenSSF Scorecard tracking in your organization with automated markdown and JSON reports, plus optional GitHub issue alerts☆35Updated 2 weeks ago
- GitHub Action for creating software bill of materials using Syft.☆187Updated last week
- An SBOM query language and associated utilities☆54Updated last year
- Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded☆68Updated last month
- SBOM Edit - Conditional edits and merging of SBOMs☆69Updated last week
- SPDX Merge tool☆44Updated last month
- Runtime Security Solution for your CI/CD Pipeline☆104Updated 2 months ago
- Github Action implementation of SLSA Provenance Generation☆48Updated last week
- [Experimental] jail for Go modules☆88Updated 2 weeks ago
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- OpenVEX Specification☆150Updated 2 months ago
- Dynamic GitHub Actions from Wolfi packages☆43Updated 2 weeks ago
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆192Updated last week
- ☆42Updated 7 months ago
- Generate SBOMs with gh CLI☆185Updated this week
- A CLI used to work with the Wolfi OSS project☆62Updated this week