Data

Tools

Indexes

Applications

Experiments

Repos

An open API service providing repository metadata for many open source software ecosystems.

Topic: "fulcio"

sigstore/cosign-gatekeeper-provider

🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their signatures

Language: Go - Size: 621 KB - Last synced at: 3 months ago - Pushed at: over 1 year ago - Stars: 78 - Forks: 22

kube-tarian/sigrun

Sign your artifacts, source code or container images using Sigstore tools, Save the Signatures you want to use, and Validate & Control the deployments to allow only the known Sources based on Signatures, Maintainers & other payloads automatically.

Language: Go - Size: 705 KB - Last synced at: 4 months ago - Pushed at: about 2 years ago - Stars: 13 - Forks: 3

hboutemy/sigstore-java-poc

Java PoC code to implement sigstore operations equivalent to "cosign sign-blob"

Language: Java - Size: 91.8 KB - Last synced at: 5 months ago - Pushed at: over 2 years ago - Stars: 4 - Forks: 2

shibumi/secure-supply-chain-example

Supply Chain Security does not need to be difficult

Language: Go - Size: 3.91 KB - Last synced at: 4 days ago - Pushed at: over 3 years ago - Stars: 4 - Forks: 0

Related Topics
rekor 4 sigstore 4 cosign 3 gatekeeper 2 keyless 2 opa 2 supply-chain-security 1 sbom 1 java 1 signature-verification 1 signature 1 policy-as-code 1 pods 1 open-policy-agent 1 kubernetessecurity 1 kubernetes-security 1 kubernetes 1 containersecurity 1 containers 1 container-security 1 artifacts 1