11 results found Sort:

defenseunicorns
zarf defenseunicorns
147
1.3k
apache-2.0
18
DevSecOps for Air Gap & Limited-Connection Systems. https://zarf.dev/
dod k3s k8s oci helm sbom airgap cosign docker gitops kustomize government kubernetes cloud-native docker-registry
Created 2021-08-23
1,739 commits to main branch, last one 20 hours ago
sigstore
sigstore sigstore
114
436
apache-2.0
15
Common go library shared across sigstore services and clients
go cosign golang security sigstore supply-chain
Created 2021-02-13
1,566 commits to main branch, last one 8 hours ago
sse-secure-systems
connaisseur sse-secure-systems
61
425
apache-2.0
6
An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster
cosign docker notary security sigstore container integrity kubernetes provenance authentication image-signature container-images docker-content-trust admission-controllers signature-verification
Created 2020-08-06
838 commits to master branch, last one about a month ago
ChristofferNissen
helmper ChristofferNissen
2
119
apache-2.0
3
Import Helm Charts to OCI registries, optionally with vulnerability patching
go oci helm oras trivy cosign copacetic kubernetes
Created 2024-04-11
56 commits to main branch, last one a day ago
stacklok
sigstore-the-hard-way stacklok
25
111
apache-2.0
8
sigstore the hard way!
cosign sigstore
Created 2021-07-21
80 commits to main branch, last one 11 months ago
sigstore
cosign-installer sigstore
40
110
apache-2.0
6
Cosign Github Action
cosign
Created 2021-03-24
130 commits to main branch, last one 10 days ago
intelops
compage intelops
21
79
apache-2.0
2
Compage - Low-Code Framework to develop Rest API, gRPC, dRPC, GraphQL, WebAssembly, microservices, FaaS, Temporal workloads, IoT and edge services, K8s controllers, K8s CRDs, K8s custom APIs, K8s Oper...
grpc rust cosign golang graphql no-code low-code rest-api containers serverless webassembly hacktoberfest microservices sbom-generator code-generation backend-services containerization visual-applications software-bill-of-materials software-supply-chain-security
Created 2022-06-14
975 commits to main branch, last one 28 days ago
philips-labs
spiffe-vault philips-labs
7
79
mit
4
Integrates Spiffe and Vault to have secretless authentication
k8s helm spire vault cosign spiffe secrets hashicorp terraform kubernetes zero-trust code-signing bottom-turtle hacktoberfest
Created 2021-08-26
286 commits to main branch, last one 2 days ago
sigstore
cosign-gatekeeper-provider sigstore
23
74
apache-2.0
11
🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their signatures
opa rekor cosign fulcio keyless sigstore gatekeeper
Created 2021-11-20
43 commits to main branch, last one about a year ago
developer-guy
container-image-sign-and-verify-with-cosign-and-opa developer-guy
16
62
unknown
8
This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)
go opa cosign golang proof-of-concept open-policy-agent cosign-http-wrapper
Created 2021-06-25
12 commits to master branch, last one 2 years ago
goreleaser
goreleaser-example-supply-chain goreleaser
11
54
mit
6
Example goreleaser + github actions config with keyless signing and SBOM generation
go sbom syft cosign golang signing sigstore goreleaser supply-chain software-bill-of-materials
Created 2021-12-22
97 commits to main branch, last one 21 days ago