Alternatives and similar repositories for python-tuf

Users that are interested in python-tuf are comparing it to the libraries listed below

• notaryproject / notary
  Notary is a project that allows anyone to have trust over arbitrary collections of data
  ☆3,284Updated last year
• grafeas / grafeas
  Artifact Metadata API
  ☆1,549Updated 2 weeks ago
• tern-tools / tern
  Tern is a software composition analysis tool and Python library that generates a Software Bill of Materials for container images and Dock…
  ☆1,003Updated last year
• theupdateframework / specification
  The Update Framework specification
  ☆393Updated last year
• in-toto / in-toto
  in-toto is a framework to protect supply chain integrity.
  ☆951Updated last week
• spiffe / spiffe
  The SPIFFE Project
  ☆1,646Updated last month
• genuinetools / bane
  Custom & better AppArmor profile generator for Docker containers.
  ☆1,220Updated 5 years ago
• spiffe / spire
  The SPIFFE Runtime Environment
  ☆2,088Updated this week
• coreinfrastructure / best-practices-badge
  🏆Open Source Security Foundation (OpenSSF) Best Practices Badge (formerly Core Infrastructure Initiative (CII) Best Practices Badge)
  ☆1,286Updated this week
• Netflix / lemur
  Repository for the Lemur Certificate Manager
  ☆1,759Updated last week
• genuinetools / amicontained
  Container introspection tool. Find out what container runtime is being used as well as features available.
  ☆1,054Updated 4 years ago
• genuinetools / binctr
  Fully static, unprivileged, self-contained, containers as executable binaries.
  ☆2,518Updated 6 years ago
• cyberark / summon
  CLI that provides on-demand secrets access for common DevOps tools
  ☆745Updated last month
• slsa-framework / slsa
  Supply-chain Levels for Software Artifacts
  ☆1,740Updated this week
• pinterest / knox
  Knox is a secret management service
  ☆1,251Updated 4 months ago
• anchore / anchore-engine
  A service that analyzes docker images and scans for vulnerabilities
  ☆1,591Updated 2 years ago
• grafeas / kritis
  Deploy-time Policy Enforcer for Kubernetes applications
  ☆708Updated 6 months ago
• appc / spec
  App Container Specification and Tooling (archived, see https://github.com/rkt/rkt/issues/4024)
  ☆1,257Updated 7 years ago
• cloudflare / redoctober
  Go server for two-man rule style file encryption and decryption.
  ☆1,411Updated 11 months ago
• genuinetools / contained.af
  A stupid game for learning about containers, capabilities, and syscalls.
  ☆906Updated 2 years ago
• genuinetools / img
  Standalone, daemon-less, unprivileged Dockerfile and OCI compatible container image builder.
  ☆3,975Updated last year
• draios / sysdig-inspect
  Sysdig Inspect - A powerful opensource interface for container troubleshooting and security investigation
  ☆993Updated 5 months ago
• opencontainers / umoci
  umoci modifies Open Container images
  ☆847Updated last week
• sigstore / rekor
  Software Supply Chain Transparency Log
  ☆1,019Updated last week
• fossas / fossa-cli
  Fast, portable and reliable dependency analysis for any codebase. Supports license & vulnerability scanning for large monoliths. Langua…
  ☆1,434Updated this week
• cyberark / conjur
  CyberArk Conjur automatically secures secrets used by privileged users and machine identities
  ☆864Updated 3 weeks ago
• kata-containers / runtime
  Kata Containers version 1.x runtime (for version 2.x see https://github.com/kata-containers/kata-containers).
  ☆2,096Updated 4 years ago
• gravitational / gravity
  Kubernetes application deployments for restricted, regulated, or remote environments
  ☆1,081Updated 2 years ago
• square / certstrap
  Tools to bootstrap CAs, certificate requests, and signed certificates.
  ☆2,399Updated this week
• hyperhq / runv
  Hypervisor-based Runtime for OCI
  ☆827Updated 4 years ago