Skip to content
@sigstore

sigstore

Software Supply Chain Security
README.md
sigstore logo

Sign. Verify. Protect. Making sure your software is what it claims to be.

Learn more at https://sigstore.dev/

Pinned Loading

  1. cosign cosign Public

    Code signing and transparency for containers and binaries

    Go 4.5k 547

  2. fulcio fulcio Public

    Sigstore OIDC PKI

    Go 658 139

  3. rekor rekor Public

    Software Supply Chain Transparency Log

    Go 901 164

  4. sigstore-rs sigstore-rs Public

    An experimental Rust crate for sigstore

    Rust 171 53

  5. sigstore-python sigstore-python Public

    A Sigstore client written in Python

    Python 232 49

  6. sigstore-java sigstore-java Public

    java clients for sigstore

    Java 44 21

Repositories

Showing 10 of 60 repositories
  • sigstore-conformance Public

    Conformance testing for Sigstore clients

    sigstore/sigstore-conformance’s past year of commit activity
    Python 7 10 18 2 Updated Nov 21, 2024
  • rekor-monitor Public

    Log monitor for Rekor to verify immutability and monitor entries

    sigstore/rekor-monitor’s past year of commit activity
    Go 26 Apache-2.0 26 17 1 Updated Nov 21, 2024
  • sigstore-blog Public

    Codebase for blog.sigstore.dev

    sigstore/sigstore-blog’s past year of commit activity
    CSS 6 Apache-2.0 14 3 0 Updated Nov 21, 2024
  • root-signing-staging Public

    Staging TUF repository for Sigstore trust root

    sigstore/root-signing-staging’s past year of commit activity
    3 Apache-2.0 6 5 0 Updated Nov 21, 2024
  • sigstore-go Public

    Go library for Sigstore signing and verification

    sigstore/sigstore-go’s past year of commit activity
    Go 48 Apache-2.0 26 18 8 Updated Nov 21, 2024
  • model-transparency Public

    Supply chain security for ML

    sigstore/model-transparency’s past year of commit activity
    Python 113 Apache-2.0 33 24 (1 issue needs help) 2 Updated Nov 21, 2024
  • policy-controller Public

    Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supply-chain metadata from cosign

    sigstore/policy-controller’s past year of commit activity
    Go 123 54 54 7 Updated Nov 21, 2024
  • sigstore-java Public

    java clients for sigstore

    sigstore/sigstore-java’s past year of commit activity
    Java 44 Apache-2.0 21 22 11 Updated Nov 21, 2024
  • sigstore-ruby Public

    Pure-ruby implementation of sigstore verification

    sigstore/sigstore-ruby’s past year of commit activity
    Ruby 10 Apache-2.0 2 1 1 Updated Nov 21, 2024
  • community Public

    General sigstore community repo

    sigstore/community’s past year of commit activity
    38 Apache-2.0 49 15 1 Updated Nov 21, 2024
View all repositories

Most used topics

Loading…