Alternatives and similar repositories for taps

Users that are interested in taps are comparing it to the libraries listed below

• chaoss / wg-risk
  Risk Working Group Repository
  ☆27Updated 5 months ago
• secure-systems-lab / dsse
  A specification for signing methods and formats used by Secure Systems Lab projects.
  ☆84Updated last week
• sigstore / root-signing
  TUF repository for Sigstore trust root
  ☆108Updated this week
• google / x509test
  X.509 certificate test suite
  ☆42Updated 4 years ago
• secure-systems-lab / securesystemslib
  Cryptographic and general-purpose routines for Secure Systems Lab projects at NYU
  ☆51Updated this week
• letsencrypt / cp-cps
  ISRG / Let's Encrypt CP and CPS Documents
  ☆38Updated last week
• mlieberman85 / scq
  Supply Chain Query Tool
  ☆13Updated 3 years ago
• clearlydefined / clearlydefined
  Doc, wiki and organizational content for ClearlyDefined
  ☆102Updated last month
• fepitre / debrebuild
  Given a buildinfo file from a Debian package, generate instructions for attempting to reproduce the binary packages built from the associ…
  ☆17Updated 2 years ago
• ossf / foundation
  OpenSSF Governance and Legal Docs
  ☆72Updated this week
• ossf / tac
  Technical Advisory Council
  ☆129Updated last week
• uptane / uptane-standard
  standard for Uptane
  ☆39Updated last year
• mozilla / pkipolicy
  Documents for Mozilla's PKI policies - certificate root program, etc.
  ☆56Updated 6 months ago
• theupdateframework / tuf-on-ci
  A TUF repository and signing tool
  ☆40Updated this week
• mozilla / tls-canary
  DEPRECATED - TLS regression scanner for Firefox
  ☆19Updated 2 years ago
• oasis-open-projects / documentation
  Home of resource documentation for OASIS Open Projects.
  ☆35Updated last year
• spdx / tools
  SPDX Tools
  ☆142Updated 2 years ago
• AevaOnline / supply-chain-synthesis
  Collating an overview of the open source software supply chain landscape -- and synthesizing that survey in a hopefully-useful way.
  ☆33Updated 2 years ago
• google / certificate-transparency-rfcs
  Certificate Transparency RFC
  ☆80Updated 4 years ago
• kusaridev / spector
  Tooling and library for generation, validation and verification of supply chain metadata documents and frameworks
  ☆33Updated 4 months ago
• kroeckx / x509lint
  Tool to check X509 certificates
  ☆73Updated 4 years ago
• ossf / Project-Security-Metrics
  Collect, curate, and communicate relevant security metrics for open source projects.
  ☆63Updated last year
• ossf / great-mfa-project
  The Great Multi-Factor Authentication (MFA) Distribution Project of the Open Source Security Foundation (OpenSSF). We work to distribute …
  ☆54Updated 3 years ago
• spdx / spdx-examples
  Examples of SPDX files for software combinations
  ☆135Updated 2 months ago
• ossf / toolbelt
  ☆22Updated 3 months ago
• in-toto / specification
  Specification and other related documents.
  ☆49Updated 8 months ago
• chaoss / prospector
  Prospector permits automated collection of a wide range of metrics of open source projects useful in evaluating the project.
  ☆66Updated 6 years ago
• aboutcode-org / aboutcode-toolkit
  AboutCode Toolkit provides a simple way to document provenance metadata (origin and license) about third-party code that you use in your…
  ☆98Updated 2 months ago
• spdx / spdx-3-model
  The model for the information captured in SPDX version 3 standard.
  ☆93Updated last week
• sigstore / rekor-monitor
  Log monitor for Rekor to verify immutability and monitor entries
  ☆37Updated last week