Discover sigstore/TSC Open Source project by @sigstore

Stars
7
Rank 2,294,772 (Top 46 %)
Language
Created over 3 years ago
Updated 8 months ago

sigstore

There are no reviews yet. Be the first to send feedback to the community and the maintainers!

sigstore Technical Steering Committee

cosign

Code signing and transparency for containers and binaries

4,300

gitsign

Keyless Git signing using Sigstore

938

rekor

Software Supply Chain Transparency Log

864

fulcio

Sigstore OIDC PKI

629

sigstore

Common go library shared across sigstore services and clients

441

sigstore-python

A Sigstore client written in Python

Python

227

sigstore-rs

An experimental Rust crate for sigstore

Rust

162

sigstore-js

Code-signing for npm packages

TypeScript

156

policy-controller

Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supply-chain metadata from cosign

123

cosign-installer

Cosign Github Action

114

model-transparency

Supply chain security for ML

Python

105

root-signing

TUF repository for Sigstore trust root

k8s-manifest-sigstore

kubectl plugin for signing Kubernetes manifest YAML files with sigstore

cosign-gatekeeper-provider

🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their signatures

docs

Sigstore documentation

HTML

helm-charts

Helm charts for sigstore project

Smarty

helm-sigstore

Plugin for Helm to integrate the sigstore ecosystem

timestamp-authority

RFC3161 Timestamp Authority

scaffolding

Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.

HCL

gh-action-sigstore-python

A GitHub Action for sigstore-python

Python

sigstore-go

Go library for Sigstore signing and verification

community

General sigstore community repo

sigstore-java

java clients for sigstore

Java

friends

Sigstore user stories

sigstore-website

Codebase for sigstore.dev

Vue

rekor-search-ui

Search Rekor for entries

TypeScript

rekor-monitor

Log monitor for Rekor to verify immutability and monitor entries

protobuf-specs

Protocol Buffer specifications

Rust

sget

rekor-operator

K8S Operator for Rekor

sigstore-maven-plugin

sigstore maven plugin

Java

sget-rs

sget is a keyless safe script retrieval and execution tool

Rust

sigstore-go-archived

Go library for Sigstore signing and verification

rekor-server

Cryptographic, immutable, append only software release ledger.

rekorctl

Rekor swiss army knife

ruby-sigstore

Rubygems sigstore signing plugin

Ruby

sigstore-git-verifier

A Github Action to verify that new commits are present in the sigstore transparency log.

Shell

sigstore-maven

sigstore maven plugin

Java

sigstore-conformance

Conformance testing for Sigstore clients

Python

sigstore.github.io

Rekor website

Sass

homebrew-tap

Sigstore Homebrew Tap

Ruby

examples

Repository to store various monitors for upstream release sites

Python

sigstore-blog

Codebase for sigstore.dev

CSS

sigstore-project-template

cookiecutter template for sigstore projects

github-sync

Pulumi GitHub Sync for sigstore

sig-clients

Home of the clients SIG

sigstore-helm-operator

Helm based operator for the sigstore project

Smarty

sigstore-probers

Probers for sigstore infrastructure

.github

Default community health files for the Sigstore organization.

sigstore-devops-tools

Tools & services used to help in the development flow of sigstore

sigstore-ruby

Pure-ruby implementation of sigstore verification

Ruby

root-signing-staging

Staging TUF repository for Sigstore trust root

root-signing-practice

Root TUF Key Signing

rekor-ansible

Ansible role to deploy the Rekor signature transparency log

sigstore-installer

fish-food

Lua

sig-public-good-operations

Home of the public good operations SIG

sigstore/TSC

sigstore

Reviews

Repository Details

More Repositories