witchery-project / witchery
build distroless images with alpine tools
☆132Updated 2 years ago
Alternatives and similar repositories for witchery:
Users that are interested in witchery are comparing it to the libraries listed below
- Tools to construct a read-only container 'registry' served by plain Nginx☆73Updated 3 years ago
- Linux Process Discovery. C Library, Go bindings, Runtime.☆221Updated 2 years ago
- Dirty hack to run a read-only, public Docker registry on almost any static file hosting service (e.g. NGINX, Netlify, S3...)☆163Updated 2 months ago
- oci and apk explorer☆53Updated this week
- A Go library for the Linux Landlock sandboxing feature☆187Updated last week
- Transparenty Immutable Container Image Tags☆20Updated last year
- Terraform module to configure Vault for GitHub OIDC authentication from Action runners.☆29Updated 8 months ago
- Compare data from multiple vulnerability scanners to get a more complete picture of potential exposures.☆63Updated last year
- Container image registry that serves images built fresh when you ask for them☆224Updated 2 months ago
- [Soft-deprecated] Reproducible apt/dnf/apk/pacman, with content-addressing☆108Updated last year
- A CLI used to work with the Wolfi OSS project☆60Updated this week
- Recipes for baking systemd-sysext images☆91Updated this week
- ☆54Updated last week
- CLI tool for CIDR range operations (check, generate)☆137Updated 5 years ago
- Darkfiles finds orphaned files in container images and makes them to bad deeds☆41Updated last year
- verify https assets with a public transparency log☆75Updated 3 years ago
- PKI support for SSH certificates☆57Updated 3 years ago
- Zero config TLS proxy server that uses SNI☆143Updated last year
- Trust Dexter to ensure that all your images are pinned by digest for better security☆29Updated last year
- Test ssh login key acceptance without having the private key☆218Updated 3 years ago
- docker image with useful network and container tools and SSH☆63Updated 5 months ago
- split input and feed it into the given utility☆93Updated 2 years ago
- sshd AuthorizedKeysCommand to read ~/.ssh/authorized_keys.d☆54Updated 2 months ago
- Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.☆62Updated this week
- Tools for using PIV tokens (like Yubikeys) as an SSH agent, for encrypting data at rest, and more☆200Updated last week
- Go implementation for CNAB content trust verification using TUF, Notary, and in-toto☆31Updated last year
- A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.☆62Updated this week
- OCI transport plugin for apt-get (i.e., apt-get over ghcr.io)☆107Updated last year
- Template repository for new images☆25Updated last year
- Generate seccomp profiles from go binaries☆136Updated 6 years ago