GitHub topics: sigstore
sigstore/model-transparency
Supply chain security for ML
Language: Python - Size: 2.26 MB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 155 - Forks: 35
carabiner-dev/snappy
An easy API snapshot tool.
Language: Go - Size: 158 KB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 1 - Forks: 0
carabiner-dev/bnd
Sign and package attestations in sigstore bundles
Language: Go - Size: 421 KB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 5 - Forks: 2
sse-secure-systems/connaisseur
An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster
Language: Go - Size: 29.1 MB - Last synced at: 2 days ago - Pushed at: 2 days ago - Stars: 455 - Forks: 62
sigstore/sigstore-devops-tools
Tools & services used to help in the development flow of sigstore
Language: Go - Size: 303 KB - Last synced at: 3 days ago - Pushed at: 3 days ago - Stars: 6 - Forks: 3
sigstore/helm-sigstore
Plugin for Helm to integrate the sigstore ecosystem
Language: Go - Size: 641 KB - Last synced at: 4 days ago - Pushed at: 4 days ago - Stars: 62 - Forks: 13
ThomasVitale/supply-chain-security-java
Samples showing how to secure the supply chain for Java applications.
Language: Java - Size: 799 KB - Last synced at: 4 days ago - Pushed at: 5 days ago - Stars: 12 - Forks: 4
sigstore/sigstore-conformance
Conformance testing for Sigstore clients
Language: Python - Size: 353 KB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 9 - Forks: 13
sigstore/sigstore
Common go library shared across sigstore services and clients
Language: Go - Size: 3.84 MB - Last synced at: 5 days ago - Pushed at: 5 days ago - Stars: 481 - Forks: 132
sigstore/sigstore-go
Go library for Sigstore signing and verification
Language: Go - Size: 1.32 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 61 - Forks: 31
juburr/cosign-orb
A simple CircleCI orb used to install Cosign and sign container images
Language: Shell - Size: 713 KB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 2 - Forks: 1
carabiner-dev/ampel
🔴🟡🟢 The Amazing Multipurpose Policy Engine (and L)
Language: Go - Size: 1.39 MB - Last synced at: 8 days ago - Pushed at: 9 days ago - Stars: 3 - Forks: 1
sigstore/gitsign
Keyless Git signing using Sigstore
Language: Go - Size: 1.77 MB - Last synced at: 9 days ago - Pushed at: 9 days ago - Stars: 991 - Forks: 69
securesign/secure-sign-operator
Kubernetes Operator for deploying and managing Sigstore components like Fulcio, Rekor, TSA, and TUF. It streamlines secure software signing in Kubernetes and OpenShift environments.
Language: Go - Size: 3.93 MB - Last synced at: 7 days ago - Pushed at: 7 days ago - Stars: 4 - Forks: 18
kubernetes-sigs/tejolote
A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.
Language: Go - Size: 1.91 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 62 - Forks: 9
sigstore/github-sync
Pulumi GitHub Sync for sigstore
Language: Go - Size: 333 KB - Last synced at: 12 days ago - Pushed at: 12 days ago - Stars: 6 - Forks: 4
sigstore/sigstore-rs
An experimental Rust crate for sigstore
Language: Rust - Size: 1.38 MB - Last synced at: 14 days ago - Pushed at: 16 days ago - Stars: 187 - Forks: 58
garethahealy/verifying-redhat-images
Examples of how to verify Red Hat images from https://catalog.redhat.com
Language: Dockerfile - Size: 26.4 KB - Last synced at: 16 days ago - Pushed at: 16 days ago - Stars: 0 - Forks: 0
securesign/trusted-foundations
Language: MDX - Size: 13.8 MB - Last synced at: 5 days ago - Pushed at: 6 days ago - Stars: 2 - Forks: 0
trailofbits/sigstore-apis
Rust clients for the Fulcio and Rekor APIs
Language: Rust - Size: 161 KB - Last synced at: 6 days ago - Pushed at: 19 days ago - Stars: 6 - Forks: 1
mozillazg/sigstore-kms-alibabakms
A Sigstore KMS plugin for Alibaba Cloud KMS
Language: Go - Size: 2.99 MB - Last synced at: 23 days ago - Pushed at: 23 days ago - Stars: 0 - Forks: 0
goreleaser/example-supply-chain
Example goreleaser + github actions config with keyless signing, SBOM generation, and attestations
Language: Go - Size: 126 KB - Last synced at: 7 days ago - Pushed at: 2 months ago - Stars: 56 - Forks: 10
spencergilbert/asdf-gitsign
Gitsign plugin for asdf version manager
Language: Shell - Size: 52.7 KB - Last synced at: 5 days ago - Pushed at: about 2 months ago - Stars: 1 - Forks: 0
whiteprints/whiteprints
A Copier-based cookiecutter for creating Python projects managed by uv.
Language: Python - Size: 1.03 MB - Last synced at: 6 days ago - Pushed at: 6 days ago - Stars: 4 - Forks: 1
sigstore/cosign-gatekeeper-provider
🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their signatures
Language: Go - Size: 621 KB - Last synced at: about 2 months ago - Pushed at: about 1 year ago - Stars: 78 - Forks: 23
argoproj-labs/argocd-interlace
Enabling Software Supply Chain Security Capabilities in ArgoCD
Language: Go - Size: 10.2 MB - Last synced at: about 2 months ago - Pushed at: over 2 years ago - Stars: 83 - Forks: 10
BobyMCbobs/ucore-k8s
ucore with a strict repo-only Sigstore container images policy, kubeadm and kata-containers
Language: Just - Size: 411 KB - Last synced at: about 2 months ago - Pushed at: 2 months ago - Stars: 0 - Forks: 0
GoogleCloudPlatform/aactl
Google Container Analysis data import utility, supports OSS vulnerability scanner reports, SLSA provenance and sigstore attestations.
Language: Go - Size: 24.8 MB - Last synced at: 8 days ago - Pushed at: 13 days ago - Stars: 10 - Forks: 7
hauler-dev/cosign Fork of sigstore/cosign
(landing area for upstream contributions and carried patches)
Language: Go - Size: 22 MB - Last synced at: 24 days ago - Pushed at: 3 months ago - Stars: 1 - Forks: 1
kube-tarian/sigrun
Sign your artifacts, source code or container images using Sigstore tools, Save the Signatures you want to use, and Validate & Control the deployments to allow only the known Sources based on Signatures, Maintainers & other payloads automatically.
Language: Go - Size: 705 KB - Last synced at: 21 days ago - Pushed at: over 1 year ago - Stars: 13 - Forks: 3
appvia/cosign-keyless-admission-webhook
Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
Language: JavaScript - Size: 150 KB - Last synced at: 22 days ago - Pushed at: about 2 months ago - Stars: 23 - Forks: 1
stacklok/sigstore-the-hard-way
sigstore the hard way!
Size: 4.03 MB - Last synced at: about 2 months ago - Pushed at: 12 months ago - Stars: 110 - Forks: 25
cpanato/cosign-orb
Cosign CircleCI orb. To learn more about cosign visit the GitHub repo
Language: Shell - Size: 51.8 KB - Last synced at: about 2 months ago - Pushed at: 3 months ago - Stars: 1 - Forks: 2
kpcyrd/pypi-provenance-auth
Highly experimental tool to infer trust to a git commit through pypi sigstore attestations
Language: Rust - Size: 43 KB - Last synced at: 8 days ago - Pushed at: 5 months ago - Stars: 1 - Forks: 0
richardfan1126/nitro-enclaves-eif-build-action
This GitHub Action use kaniko and Amazon Linux container with nitro-cli to build a reproducible AWS Nitro Enclaves EIF file and its information.
Language: Shell - Size: 29.3 KB - Last synced at: 13 days ago - Pushed at: 10 months ago - Stars: 8 - Forks: 1
nsmith5/rekor-sidekick
🔍 Rekor transparency log monitoring and alerting
Language: Go - Size: 425 KB - Last synced at: 22 days ago - Pushed at: over 1 year ago - Stars: 27 - Forks: 6
chainguard-dev/tlogistry 📦
Transparenty Immutable Container Image Tags
Language: Go - Size: 292 KB - Last synced at: about 1 month ago - Pushed at: almost 2 years ago - Stars: 20 - Forks: 2
datosh/devx
Demo for my talk on Developer Experience (DX)
Language: HCL - Size: 17.6 KB - Last synced at: 7 months ago - Pushed at: 7 months ago - Stars: 0 - Forks: 0
operatorequals/gitsign-action
Verify Sigstore Gitsign commit signatures
Language: Shell - Size: 74.2 KB - Last synced at: 23 days ago - Pushed at: over 2 years ago - Stars: 6 - Forks: 0
wolfeidau/gh-cosign-goreleaser
Example of GitHub Actions, goreleaser and cosign to release a Go based CLI program.
Language: Go - Size: 138 KB - Last synced at: 2 months ago - Pushed at: 11 months ago - Stars: 1 - Forks: 0
martinbaillie/ocistow
Stream, Mutate and Sign Images with AWS Lambda and ECR
Language: Go - Size: 558 KB - Last synced at: 8 days ago - Pushed at: over 3 years ago - Stars: 19 - Forks: 1
hboutemy/sigstore-java-poc
Java PoC code to implement sigstore operations equivalent to "cosign sign-blob"
Language: Java - Size: 91.8 KB - Last synced at: 13 days ago - Pushed at: almost 2 years ago - Stars: 4 - Forks: 2
jenkin/sigstore-for-pdf
Sign PDF documents with sigstore
Language: Standard ML - Size: 604 KB - Last synced at: 12 months ago - Pushed at: almost 2 years ago - Stars: 1 - Forks: 0
mayaCostantini/sigstore-ansible-github-action Fork of sigstore/gh-action-sigstore-python
Automatically sign Ansible projects with Sigstore
Language: Python - Size: 196 KB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 1 - Forks: 1
sigstore/sigstore-go-archived 📦
Go library for Sigstore signing and verification
Language: Go - Size: 105 KB - Last synced at: 9 months ago - Pushed at: over 1 year ago - Stars: 16 - Forks: 10
flxw/rekor-monitor
A Rekor crawler and monitor
Language: Go - Size: 7.49 MB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 1 - Forks: 0
rewanthtammana/sigstore-the-easy-way
Software signing just got easier
Language: HTML - Size: 13.9 MB - Last synced at: over 1 year ago - Pushed at: over 1 year ago - Stars: 13 - Forks: 3
kameshsampath/go-hello-world
Demo to showcase how to build a golang application using ko. Sign and push the image to the container registry using https://sigstore.dev. Apply policy controller on Kubernetes to allow only signed images.
Language: Go - Size: 65.4 KB - Last synced at: 5 days ago - Pushed at: about 2 years ago - Stars: 1 - Forks: 1
smallstep/ansible-collection-sigstore
An Ansible collection for using Sigstore to verify file signatures
Language: Python - Size: 53.7 KB - Last synced at: 17 days ago - Pushed at: about 1 year ago - Stars: 4 - Forks: 1
mayaCostantini/sigstore-roles
Ansible roles to deploy Sigstore components
Language: Jinja - Size: 58.6 KB - Last synced at: about 2 months ago - Pushed at: over 2 years ago - Stars: 1 - Forks: 0
kubeservice-stack/cosign-webhook
Kubernetes admission webhook that uses cosign tools Container Sign Verify
Language: Go - Size: 16.7 MB - Last synced at: 10 months ago - Pushed at: over 1 year ago - Stars: 1 - Forks: 1
toddysm/cssc-pipeline
Sample CI/CD pipeline for creating container images with provenance details.
Language: Shell - Size: 7.9 MB - Last synced at: 11 months ago - Pushed at: 11 months ago - Stars: 1 - Forks: 0
albasystems/hello-slsa
Project that demonstrates the implementation of SLSA L3 with Github Workflows and Sigstore. Bonus: binary authorization with Kyverno.
Language: CUE - Size: 29.3 KB - Last synced at: almost 2 years ago - Pushed at: about 2 years ago - Stars: 13 - Forks: 1
hboutemy/sigstore-maven-plugin Fork of sigstore/sigstore-maven-plugin
Sigstore Maven plugin POC
Language: Java - Size: 1.03 MB - Last synced at: 3 months ago - Pushed at: over 1 year ago - Stars: 0 - Forks: 1
mayaCostantini/pyconfr-sigstore-demo
Demo repository for the PyConFR 2023 talk "Introduction to Sigstore: cryptographic signatures made easier"
Language: Python - Size: 55.7 KB - Last synced at: about 2 months ago - Pushed at: about 2 years ago - Stars: 0 - Forks: 0
chrisns/cosign-keyless-demo 📦
Proof of concept that uses cosign and GitHub's in built OIDC for actions to sign container images, providing a proof that what is in the registry came from your GitHub action.
Language: Dockerfile - Size: 66.4 KB - Last synced at: 12 months ago - Pushed at: about 2 years ago - Stars: 13 - Forks: 0
garethahealy/kyverno-verifyimages-blog 📦
[Archived] Blog about kyverno verify images which uses cosign from sigstore under the hood
Language: Shell - Size: 664 KB - Last synced at: 5 months ago - Pushed at: over 3 years ago - Stars: 0 - Forks: 0
cpanato/does-github-support-gitsign-signatures-yet
Does GitHub support gitsign signatures yet?
Size: 201 KB - Last synced at: about 2 months ago - Pushed at: over 2 years ago - Stars: 1 - Forks: 0
shibumi/secure-supply-chain-example
Supply Chain Security does not need to be difficult
Language: Go - Size: 3.91 KB - Last synced at: 2 days ago - Pushed at: about 3 years ago - Stars: 4 - Forks: 0
strongjz/cosign-aws-codepipeline
Example code repo for blog post https://chainguard.dev/posts/2022-01-07-cosign-aws-codepipeline
Language: HCL - Size: 50.8 KB - Last synced at: 2 days ago - Pushed at: over 3 years ago - Stars: 7 - Forks: 2
