Skip to content
@sigstore

sigstore

Software Supply Chain Security
README.md
sigstore logo

sign. verify. Protect. Making sure your software is what it claims to be.

Learn more at https://sigstore.dev/

Pinned Loading

  1. cosign cosign Public

    Code signing and transparency for containers and binaries

    Go 4.2k 506

  2. fulcio fulcio Public

    Sigstore OIDC PKI

    Go 622 132

  3. rekor rekor Public

    Software Supply Chain Transparency Log

    Go 851 160

  4. sigstore-rs sigstore-rs Public

    An experimental Rust crate for sigstore

    Rust 156 48

  5. sigstore-python sigstore-python Public

    A Sigstore client for Python

    Python 214 41

  6. sigstore-java sigstore-java Public

    java clients for sigstore

    Java 34 20

Repositories

Showing 10 of 60 repositories
  • helm-charts Public

    Helm charts for sigstore project

    sigstore/helm-charts’s past year of commit activity
    Smarty 62 Apache-2.0 89 23 17 Updated Jul 2, 2024
  • cosign Public

    Code signing and transparency for containers and binaries

    sigstore/cosign’s past year of commit activity
    Go 4,226 Apache-2.0 506 203 (1 issue needs help) 8 Updated Jul 2, 2024
  • model-transparency Public

    Supply chain security for ML

    sigstore/model-transparency’s past year of commit activity
    Python 99 Apache-2.0 27 31 6 Updated Jul 2, 2024
  • sigstore-go Public

    Go library for Sigstore signing and verification

    sigstore/sigstore-go’s past year of commit activity
    Go 36 Apache-2.0 13 19 8 Updated Jul 2, 2024
  • policy-controller Public

    Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supply-chain metadata from cosign

    sigstore/policy-controller’s past year of commit activity
    Go 122 53 49 3 Updated Jul 2, 2024
  • sigstore Public

    Common go library shared across sigstore services and clients

    sigstore/sigstore’s past year of commit activity
    Go 437 Apache-2.0 114 33 9 Updated Jul 2, 2024
  • github-sync Public

    Pulumi GitHub Sync for sigstore

    sigstore/github-sync’s past year of commit activity
    Go 4 Apache-2.0 4 0 1 Updated Jul 2, 2024
  • timestamp-authority Public

    RFC3161 Timestamp Authority

    sigstore/timestamp-authority’s past year of commit activity
    Go 55 Apache-2.0 33 8 1 Updated Jul 2, 2024
  • root-signing Public

    TUF repository for Sigstore trust root

    sigstore/root-signing’s past year of commit activity
    Go 79 Apache-2.0 76 47 3 Updated Jul 2, 2024
  • fulcio Public

    Sigstore OIDC PKI

    sigstore/fulcio’s past year of commit activity
    Go 622 Apache-2.0 132 48 (1 issue needs help) 10 Updated Jul 2, 2024
View all repositories