11-day current streak·15-day longest streak
-
cosign ★ PINNED ⑂
Container Signing
Go ★ 0 6d agoExplain → -
fulcio ★ PINNED ⑂
SigStore WebPKI
Go ★ 0 2mo agoExplain → -
rekor ★ PINNED ⑂
Rekor CLI application
Go ★ 0 20h agoExplain → -
sigstore ★ PINNED ⑂
Signing prototype
Go ★ 0 1mo agoExplain → -
sigstore-maven-plugin ★ PINNED ⑂
No description.
Java ★ 0 3y agoExplain → -
oss-fuzz ★ PINNED ⑂
OSS-Fuzz - continuous fuzzing for open source software.
Shell ★ 0 1mo agoExplain → -
relic ⑂
Relic is a service and a tool for adding digital signatures to operating system packages for Linux and Windows
Go ★ 1 5y agoExplain → -
hello-ko ⑂
Hello Ko App
Go ★ 1 3y agoExplain → -
rekor-exporter
No description.
★ 1 4y agoExplain → -
manila_update ⑂
The HTML Presentation Framework
JavaScript ★ 1 5y agoExplain → -
kofc7186-fishfry-gas
No description.
JavaScript ★ 1 8y agoExplain → -
helm-charts ⑂
Helm charts for sigstore project
Go Template ★ 0 18h agoExplain → -
timestamp-authority ⑂
RFC3161 Timestamp Authority
Go ★ 0 1d agoExplain → -
protobuf-specs ⑂
Protocol Buffer specifications
Makefile ★ 0 1d agoExplain → -
cosign-installer ⑂
Cosign Github Action
★ 0 1d agoExplain → -
terraform-modules ⑂
Terraform modules for Sigstore cloud infrastructure
HCL ★ 0 7d agoExplain → -
best-practices-badge ⑂
🏆Core Infrastructure Initiative Best Practices Badge
★ 0 4y agoExplain → -
sigstore-go ⑂
A Go client library for Sigstore
Go ★ 0 1mo agoExplain → -
dex ⑂
OpenID Connect (OIDC) identity and OAuth 2.0 provider with pluggable connectors
Go ★ 0 1d agoExplain → -
root-signing ⑂
No description.
Makefile ★ 0 1mo agoExplain → -
re2 ⑂
RE2 is a fast, safe, thread-friendly alternative to backtracking regular expression engines like those used in PCRE, Perl, and Python. It is a C++ library.
★ 0 5mo agoExplain → -
clusterfuzz ⑂
Scalable fuzzing infrastructure.
★ 0 2mo agoExplain → -
abseil-cpp ⑂
Abseil Common Libraries (C++)
★ 0 2mo agoExplain → -
slsa-verifier ⑂
Verify provenance from SLSA compliant builders
Go ★ 0 2mo agoExplain → -
model-transparency ⑂
Supply chain security for ML
Python ★ 0 2mo agoExplain → -
sigstore-python ⑂
A Sigstore client in Python
Python ★ 0 2mo agoExplain → -
trillian ⑂
A transparent, highly scalable and cryptographically verifiable data store.
Go ★ 0 1d agoExplain → -
tessera ⑂
Go library for building tile-based transparency logs (tlogs)
Go ★ 0 2mo agoExplain → -
tesseract ⑂
An implementation of the Static CT API based on Tessera.
Go ★ 0 2mo agoExplain → -
sigstore-java ⑂
java clients for sigstore
Java ★ 0 2mo agoExplain → -
gitsign ⑂
Keyless Git signing using Sigstore
Go ★ 0 2mo agoExplain → -
distroless ⑂
🥑 Language focused docker images, minus the operating system.
Starlark ★ 0 2mo agoExplain → -
go-securesystemslib ⑂
Cryptographic and general-purpose routines for Golang Secure Systems Lab projects at NYU
★ 0 2mo agoExplain → -
root-signing-staging ⑂
Staging TUF repository for Sigstore trust root
★ 0 2mo agoExplain → -
sigstore-probers ⑂
Probers for sigstore infrastructure
Go ★ 0 3mo agoExplain → -
trivy ⑂
Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more
Go ★ 0 3mo agoExplain → -
rekor-tiles ⑂
Signature Transparency Log designed for ease of use, low cost, and minimal maintenance
Go ★ 0 3mo agoExplain → -
sigstore-ruby ⑂
Pure-ruby implementation of sigstore verification
Ruby ★ 0 3mo agoExplain → -
github-sync ⑂
Pulumi GitHub Sync for sigstore
Go ★ 0 4mo agoExplain → -
community ⑂
General sigstore community repo
★ 0 4mo agoExplain → -
scaffolding ⑂
Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.
Go ★ 0 4mo agoExplain → -
redismock ⑂
Redis client Mock
★ 0 5mo agoExplain → -
go-redis ⑂
Redis Go client
★ 0 5mo agoExplain → -
multiclaude ⑂
No description.
★ 0 5mo agoExplain → -
sigstore-devops-tools ⑂
Tools & services used to help in the development flow of sigstore
Go ★ 0 5mo agoExplain → -
sigstore-js ⑂
Code-signing for npm packages
TypeScript ★ 0 5mo agoExplain → -
open-build-service ⑂
Build and distribute Linux packages from sources in an automatic, consistent and reproducible way #obs
★ 0 6mo agoExplain → -
rekor-monitor ⑂
Log monitor for Rekor to verify immutability and monitor entries
Go ★ 0 6mo agoExplain → -
docs ⑂
Sigstore documentation
HTML ★ 0 6mo agoExplain → -
github-builder-experimental ⑂
Official Docker-maintained reusable GitHub Actions workflows
★ 0 6mo agoExplain → -
rekor-search-ui ⑂
Search Rekor for entries
TypeScript ★ 0 6mo agoExplain → -
cosign-gatekeeper-provider ⑂
🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their signatures
★ 0 7mo agoExplain → -
alpha-omega ⑂
Protect society by improving the security of open source software through direct maintainer engagement and expert analysis.
Open Policy Agent ★ 0 7mo agoExplain → -
helm-sigstore ⑂
Plugin for Helm to integrate the sigstore ecosystem
Go ★ 0 7mo agoExplain → -
terraform-provider-note-signer
No description.
Go ★ 0 5mo agoExplain → -
amber
Presents a Trillian gRPC facade for "frozen" transparency logs
Go ★ 0 8mo agoExplain → -
witness ⑂
Libraries and binaries for running witnesses for verifiable logs
Go ★ 0 8mo agoExplain → -
extremely-dangerous-public-oidc-beacon ⑂
No description.
Python ★ 0 8mo agoExplain → -
sigstore-blog ⑂
Codebase for sigstore.dev
CSS ★ 0 10mo agoExplain → -
sigstore-rs ⑂
An experimental Rust crate for sigstore
Rust ★ 0 11mo agoExplain → -
armored-witness ⑂
No description.
★ 0 11mo agoExplain → -
.github ⑂
Default community health files for the Sigstore organization.
★ 0 1y agoExplain → -
TSC ⑂
sigstore Technical Advisory Council
★ 0 1y agoExplain → -
cg-actions ⑂
A collection of reusable Github Actions workflows.
Go ★ 0 1y agoExplain → -
sigstore-conformance ⑂
Conformance testing for Sigstore clients
Python ★ 0 1y agoExplain → -
homebrew-core ⑂
🍻 Default formulae for the missing package manager for macOS (or Linux)
★ 0 1y agoExplain → -
scorecard ⑂
Security Scorecards - Security health metrics for Open Source
Go ★ 0 1y agoExplain → -
certificate-transparency-go ⑂
Auditing for TLS certificates (Go code)
Go ★ 0 1y agoExplain → -
tac ⑂
Technical Advisory Council
★ 0 1y agoExplain → -
columbariumImageGenerator
No description.
HTML ★ 0 1y agoExplain → -
gh-action-sigstore-python ⑂
A GitHub Action for sigstore-python
Python ★ 0 1y agoExplain → -
buildpacks ⑂
Builders and buildpacks designed to run on Google Cloud's container platforms
★ 0 1y agoExplain → -
homebrew-tap ⑂
Sigstore Homebrew Tap
Ruby ★ 0 1y agoExplain → -
policy-controller ⑂
No description.
Go ★ 0 1y agoExplain → -
zeitgeist ⑂
Zeitgeist: the language-agnostic dependency checker
★ 0 1y agoExplain → -
tuf-on-ci ⑂
A TUF repository and signing tool
★ 0 1y agoExplain → -
architecture-docs ⑂
Specification of sigstore's architecture in an IETF internet-draft format
Makefile ★ 0 1y agoExplain → -
prom-busybox ⑂
Prometheus Busybox Docker base images
★ 0 1y agoExplain → -
sigstore-website ⑂
Codebase for sigstore.dev
Vue ★ 0 1y agoExplain → -
jx-goreleaser-image ⑂
Goreleaser image for Jenkins X
★ 0 1y agoExplain → -
konflux-test ⑂
Konflux-test repository
★ 0 1y agoExplain → -
chalk ⑂
Chalk allows you to follow code from development, through builds and into production.
★ 0 1y agoExplain → -
charts ⑂
Helm charts repository for the Cilium project
★ 0 1y agoExplain → -
goreleaser-cross ⑂
Docker image for Golang cross-compiling with CGO
★ 0 1y agoExplain → -
cli ⑂
BlueBuild's command line program that builds custom Fedora Atomic images based on your recipe.yml
★ 0 1y agoExplain → -
nerdctl ⑂
contaiNERD CTL - Docker-compatible CLI for containerd, with support for Compose, Rootless, eStargz, OCIcrypt, IPFS, ...
★ 0 1y agoExplain → -
k0s ⑂
k0s - The Zero Friction Kubernetes
★ 0 1y agoExplain → -
goreleaser ⑂
Deliver Go binaries as fast and easily as possible
★ 0 1y agoExplain → -
deno ⑂
A modern runtime for JavaScript and TypeScript.
★ 0 1y agoExplain → -
k8s-manifest-sigstore ⑂
kubectl plugin for signing Kubernetes manifest YAML files with sigstore
★ 0 1y agoExplain → -
python-tuf ⑂
Python reference implementation of The Update Framework (TUF)
★ 0 2y agoExplain → -
podtato-head ⑂
Demo App for TAG App Delivery
★ 0 2y agoExplain → -
slsa-github-generator ⑂
Language-agnostic SLSA provenance generation for Github Actions
Go ★ 0 2y agoExplain → -
rekor-slsa
No description.
Go ★ 0 2y agoExplain → -
golang-cross ⑂
golang cross compiler with CGO
★ 0 2y agoExplain → -
edu ⑂
Educational Resources for Software Supply Chain Security
★ 0 3y agoExplain → -
Unciv ⑂
Open-source Android/Desktop remake of Civ V
★ 0 3y agoExplain → -
certificatetransparency ⑂
Certificate transparency for Android and JVM
★ 0 3y agoExplain → -
cosign-orb ⑂
Cosign CircleCI orb. To learn more about cosign visit the GitHub repo
★ 0 3y agoExplain → -
circleci-executor-builder ⑂
No description.
★ 0 3y agoExplain → -
docker-ci-scripts ⑂
Docker CI scripts
★ 0 3y agoExplain → -
tools ⑂
Tools shared by several Istio repositories
★ 0 3y agoExplain → -
cilium ⑂
eBPF-based Networking, Security, and Observability
★ 0 3y agoExplain → -
release ⑂
Release infrastructure for Kubernetes and related components
★ 0 3y agoExplain → -
scorecard-action ⑂
No description.
Go ★ 0 3y agoExplain → -
starter-workflows ⑂
Accelerating new GitHub Actions workflows
TypeScript ★ 0 3y agoExplain → -
syft ⑂
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
★ 0 3y agoExplain → -
rules_oci ⑂
Bazel rules for building OCI containers
★ 0 3y agoExplain → -
shillelagh ⑂
Making it easy to query APIs via SQL
Python ★ 0 3y agoExplain → -
bodyclose ⑂
Analyzer: checks whether HTTP response body is closed and a re-use of TCP connection is not blocked.
★ 0 3y agoExplain → -
rekor-phren ⑂
No description.
Go ★ 0 3y agoExplain → -
tfsec-sarif-action ⑂
No description.
★ 0 3y agoExplain → -
sigstore-project-template ⑂
cookiecutter template for sigstore projects
★ 0 3y agoExplain → -
sigstore-maven ⑂
sigstore maven plugin
★ 0 3y agoExplain → -
trillian-website ⑂
No description.
★ 0 4y agoExplain → -
trillian-examples ⑂
A place to store some examples which use Trillian APIs to build things.
★ 0 4y agoExplain → -
dex-website ⑂
Dex website
★ 0 3y agoExplain → -
wg-securing-software-repos ⑂
Proposed OpenSSF Working Group on Securing Software Repositories
★ 0 4y agoExplain → -
go ⑂
The Go programming language
★ 0 4y agoExplain → -
test-sigstore-root
Test repo for creating sigstore root metadata
Go ★ 0 4y agoExplain → -
allstar ⑂
GitHub App to set and enforce security policies
★ 0 4y agoExplain → -
event-functions ⑂
No description.
Python ★ 0 3y agoExplain → -
Custom-Error-Page ⑂
custom error page for nginx ingress controller
Go ★ 0 4y agoExplain → -
square-webhook ⑂
No description.
Python ★ 0 3y agoExplain → -
test-windows-cosign-installer
No description.
★ 0 4y agoExplain → -
binary-transparency-website ⑂
No description.
★ 0 4y agoExplain → -
sigstore4j
No description.
★ 0 4y agoExplain → -
chains ⑂
Supply Chain Security in Tekton Pipelines
★ 0 4y agoExplain → -
go-rpm ⑂
A native implementation of the RPM file specification in Go
★ 0 6y agoExplain → -
analysis ⑂
openapi specification object model analyzer
★ 0 4y agoExplain → -
go-rpmutils ⑂
Golang implementation of parsing RPM packages
★ 0 5y agoExplain → -
bbs-signature
No description.
★ 0 4y agoExplain → -
dst
No description.
Go ★ 0 5y agoExplain → -
addlicense ⑂
A program which ensures source code files have copyright license headers by scanning directory patterns recursively
★ 0 5y agoExplain → -
sigstore.github.io ⑂
Rekor website
Sass ★ 0 5y agoExplain → -
examples ⑂
Repository to store various monitors for upstream release sites
Python ★ 0 5y agoExplain → -
ruby-sigstore ⑂
Rubygems sigstore signing plugin
Ruby ★ 0 4y agoExplain → -
certificates ⑂
🛡️ A private certificate authority (X.509 & SSH) & ACME server for secure automated certificate management, so you can use TLS everywhere & SSO for SSH.
★ 0 5y agoExplain → -
openid_connect ⑂
OpenID Connect Server & Client Library
★ 0 5y agoExplain → -
google-http-java-client ⑂
Google HTTP Client Library for Java
★ 0 5y agoExplain → -
go-swagger ⑂
Swagger 2.0 implementation for go
★ 0 5y agoExplain → -
rekor-server ⑂
Cryptographic, immutable, append only software release ledger.
Go ★ 0 5y agoExplain → -
coreos-assembler ⑂
Tooling container to assemble CoreOS-like systems
★ 0 6y agoExplain → -
console ⑂
OpenShift Cluster Console UI
★ 0 6y agoExplain → -
openshift-docs ⑂
OpenShift Documentation
★ 0 6y agoExplain → -
netapp_e-cookbook ⑂
Chef cookbook for managing NetApp E-Series storage systems
Ruby ★ 0 11y agoExplain → -
netapp-cookbook ⑂
Chef cookbook for managing NetApp Clustered Data ONTAP
Ruby ★ 0 11y agoExplain → -
s2i-python-container ⑂
Python container images based on Red Hat Software Collections and intended for OpenShift and general usage, that provide a platform for building and running Python applications. Users can choose between Red Hat Enterprise Linux, Fedora, and CentOS based images.
Shell ★ 0 7y agoExplain → -
nginx-container ⑂
Sources for SCL based Nginx container
Shell ★ 0 9y agoExplain → -
openstack4j ⑂
A Fluent OpenStack Client Library for Java
Java ★ 0 11y agoExplain → -
himssinnovationcenter
No description.
★ 0 10y agoExplain → -
puppet-eseries ⑂
No description.
Ruby ★ 0 11y agoExplain → -
puppetlabs-netapp ⑂
No description.
Ruby ★ 0 11y agoExplain → -
puppet-cinder ⑂
OpenStack Cinder Puppet Module
Puppet ★ 0 12y agoExplain → -
manila ⑂
Shared filesystem management project for OpenStack.
★ 0 11y agoExplain → -
python-manilaclient ⑂
No description.
★ 0 11y agoExplain → -
garage-door-nodejs
No description.
PHP ★ 0 12y agoExplain → -
horizon ⑂
Horizon is a Django-based project aimed at providing a complete OpenStack Dashboard along with an extensible framework for building new dashboards from reusable components.
Python ★ 0 12y agoExplain → -
fog ⑂
The Ruby cloud services library.
Ruby ★ 0 12y agoExplain →
No repos match these filters.