Alternatives and similar repositories for core

Users that are interested in core are comparing it to the libraries listed below

• mindersec / minder
  Software Supply Chain Security Platform
  ☆360Updated this week
• theopenlane / openlane-ui
  hthe openlane ui - holds openlane console and storybook
  ☆15Updated this week
• valyentdev / ravel
  An open-source containers-as-microVMs orchestrator.
  ☆475Updated this week
• chainloop-dev / chainloop
  SDLC evidence store and policy engine for your Software Supply Chain attestations, SBOMs, VEX, SARIF, QA reports, and more
  ☆512Updated this week
• in-toto / witness
  Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact pro…
  ☆504Updated last week
• dadrus / heimdall
  A cloud native Identity Aware Proxy and Access Control Decision service
  ☆216Updated last week
• sigstore / rekor
  Software Supply Chain Transparency Log
  ☆1,031Updated last week
• sigstore / sigstore
  Common go library shared across sigstore services and clients
  ☆491Updated last week
• xeol-io / xeol
  A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs
  ☆419Updated last week
• openpubkey / openpubkey
  Reference implementation of OpenPubkey
  ☆868Updated last week
• defenseunicorns-labs / lula1
  The Compliance Validator
  ☆184Updated last week
• StacklokLabs / gofetch
  A MCP server that provides web content fetching capabilities.
  ☆20Updated this week
• sigstore / gitsign
  Keyless Git signing using Sigstore
  ☆1,041Updated this week
• anchore / grant
  A license scanner for container images and filesystems.
  ☆121Updated last week
• notaryproject / notation
  A CLI tool to sign and verify artifacts
  ☆446Updated last week
• open-policy-agent / regal
  Regal is a linter and language server for Rego, bringing your policy development experience to the next level!
  ☆349Updated this week
• otto8-ai / otto8
  ChatGPT for DevOps
  ☆100Updated 9 months ago
• CycloneDX / cyclonedx-go
  Go library to consume and produce CycloneDX Software Bill of Materials (SBOM)
  ☆97Updated last month
• StacklokLabs / mkp
  MKP is a Model Context Protocol (MCP) server for Kubernetes
  ☆54Updated this week
• sigstore / sigstore-go
  Go library for Sigstore signing and verification
  ☆80Updated this week
• protobom / protobom
  A universal SBOM representation in protocol buffers
  ☆307Updated last week
• google / capslock
  ☆1,074Updated this week
• defenseunicorns / pepr
  Type safe K8s middleware for humans
  ☆208Updated this week
• palantir / go-githubapp
  A simple Go framework for building GitHub Apps
  ☆394Updated this week
• hoophq / hoop
  The only access proxy that blocks dangerous linux commands and scrubs sensitive database outputs
  ☆463Updated this week
• gittuf / gittuf
  A security layer for Git repositories
  ☆557Updated last week
• prequel-dev / preq
  preq is the community-driven problem detector for Common Reliability Enumerations (CREs)⚡️
  ☆315Updated this week
• slsa-framework / slsa-github-generator
  Language-agnostic SLSA provenance generation for Github Actions
  ☆522Updated last month
• chainguard-images / images
  Public Chainguard Images
  ☆639Updated this week
• safedep / vet
  Protect against malicious open source packages 🤖
  ☆846Updated this week