theupdateframework/specification external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

theupdateframework/specification

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/theupdateframework/specification)

Close

theupdateframework / specificationView on GitHubMore

• External links
• Readme badge

The Update Framework specification

☆399Jan 22, 2026Updated 4 months ago

Alternatives and similar repositories for specification

Users that are interested in specification are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• theupdateframework / python-tuf

  View on GitHub
  Python reference implementation of The Update Framework (TUF)
  ☆1,709Updated this week
• in-toto / ITE

  View on GitHub
  in-toto Enhancements
  ☆20Feb 17, 2025Updated last year
• notaryproject / notary

  View on GitHub
  Notary is a project that allows anyone to have trust over arbitrary collections of data
  ☆3,290Aug 7, 2024Updated last year
• theupdateframework / taps

  View on GitHub
  TUF Augmentation Proposals (TAPs)
  ☆37Aug 28, 2025Updated 9 months ago
• in-toto / scai-demos

  View on GitHub
  Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools
  ☆19Jun 3, 2026Updated last week
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• in-toto / specification

  View on GitHub
  Specification and other related documents.
  ☆50Jan 13, 2025Updated last year
• uptane / uptane-standard

  View on GitHub
  standard for Uptane
  ☆44Apr 20, 2024Updated 2 years ago
• secure-systems-lab / securesystemslib

  View on GitHub
  Cryptographic and general-purpose routines for Secure Systems Lab projects at NYU
  ☆53Jun 3, 2026Updated last week
• testifysec / witness-examples

  View on GitHub
  Witness Examples
  ☆12Feb 27, 2024Updated 2 years ago
• sigstore / root-signing

  View on GitHub
  TUF repository for Sigstore trust root
  ☆127Jun 5, 2026Updated last week
• theupdateframework / go-tuf

  View on GitHub
  Go implementation of The Update Framework (TUF)
  ☆705Jun 3, 2026Updated last week
• psf / psf-tuf-runbook

  View on GitHub
  A runbook for the PSF, for TUF key setup and initial signing operations to bootstrap signing for PyPI.
  ☆17May 29, 2026Updated 2 weeks ago
• kusaridev / spector

  View on GitHub
  Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks
  ☆34Apr 22, 2025Updated last year
• rdimitrov / go-tuf-metadata

  View on GitHub
  Go implementation of The Update Framework heavily influenced by python-tuf
  ☆14Mar 7, 2024Updated 2 years ago
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• in-toto / in-toto

  View on GitHub
  in-toto is a framework to protect supply chain integrity.
  ☆1,003Jun 3, 2026Updated last week
• secure-systems-lab / dsse

  View on GitHub
  A specification for signing methods and formats used by Secure Systems Lab projects.
  ☆102Nov 10, 2025Updated 7 months ago
• SBOMit / specification

  View on GitHub
  ☆83Dec 10, 2025Updated 6 months ago
• theupdateframework / rust-tuf

  View on GitHub
  Rust implementation of The Update Framework (TUF)
  ☆194Feb 17, 2026Updated 3 months ago
• spiffe / spiffe

  View on GitHub
  The SPIFFE Project
  ☆1,775Jun 3, 2026Updated last week
• repository-service-tuf / repository-service-tuf

  View on GitHub
  Umbrella Repository Service for TUF
  ☆69Jun 3, 2026Updated last week
• sigstore / rekor

  View on GitHub
  Software Supply Chain Transparency Log
  ☆1,154Jun 2, 2026Updated last week
• theupdateframework / tuf-on-ci

  View on GitHub
  A TUF repository and signing tool
  ☆46Jun 5, 2026Updated last week
• spiffe / spire

  View on GitHub
  The SPIFFE Runtime Environment
  ☆2,390Updated this week
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• in-toto / friends

  View on GitHub
  Friends of in-toto! A place to record integrations and adoptions of the in-toto specification.
  ☆21Apr 6, 2026Updated 2 months ago
• in-toto / attestation-verifier

  View on GitHub
  Prototype in-toto attestation verifier based on ITE-10 and ITE-11 layouts
  ☆19Jun 3, 2026Updated last week
• servicemeshinterface / smi-spec

  View on GitHub
  Service Mesh Interface
  ☆1,058Oct 20, 2023Updated 2 years ago
• secure-systems-lab / go-securesystemslib

  View on GitHub
  Cryptographic and general-purpose routines for Golang Secure Systems Lab projects at NYU
  ☆30Updated this week
• AevaOnline / supply-chain-synthesis

  View on GitHub
  Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.
  ☆34Apr 4, 2023Updated 3 years ago
• containernetworking / cni

  View on GitHub
  Container Network Interface - networking for Linux containers
  ☆6,037Dec 15, 2025Updated 5 months ago
• PeculiarVentures / acme-ts

  View on GitHub
  Provides client and server implementations of ACME (RFC 8555) in TypeScript. It enables you to build solutions that provide complete and …
  ☆15Apr 16, 2024Updated 2 years ago
• slsa-framework / slsa

  View on GitHub
  Supply-chain Levels for Software Artifacts
  ☆1,878Updated this week
• cnabio / signy

  View on GitHub
  Go implementation for CNAB content trust verification using TUF, Notary, and in-toto
  ☆31Jul 5, 2023Updated 2 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• awslabs / tough

  View on GitHub
  Rust libraries and tools for using and generating TUF repositories
  ☆224May 28, 2026Updated 2 weeks ago
• projectcontour / contour

  View on GitHub
  Contour is a Kubernetes ingress controller using Envoy proxy.
  ☆3,929Updated this week
• sigstore / fulcio

  View on GitHub
  Sigstore OIDC PKI
  ☆851Updated this week
• quay / clair

  View on GitHub
  Vulnerability Static Analysis for Containers
  ☆10,997Jun 4, 2026Updated last week
• cdfoundation / foundation

  View on GitHub
  Interactions with the CDF Staff and Board
  ☆34Mar 20, 2026Updated 2 months ago
• in-toto / go-witness

  View on GitHub
  Go implementation of witness
  ☆49Updated this week
• php-tuf / php-tuf

  View on GitHub
  ☆45Apr 23, 2026Updated last month