Chainguard (chainguard-dev)

Chainguard

chainguard-dev

Geek Repo

Making the software supply chain secure by default.

Location:United States of America

Home Page:https://chainguard.dev

Twitter:@chainguard_dev

Github PK Tool:Github PK Tool

Chainguard's repositories

ssc-reading-list

A reading list for software supply-chain security.

vex

vexctl is a tool to attest VEX impact statements

Language:GoLicense:Apache-2.0Stargazers:44Issues:3Issues:18

bom-shelter

A place to systematically store software bill of materials (SBOM) documents.

darkfiles

Darkfiles finds orphaned files in container images and makes them to bad deeds

Language:GoLicense:Apache-2.0Stargazers:41Issues:4Issues:4

cosign-ecs-verify

Lambda function for verifying signed images in ECS

Language:GoLicense:Apache-2.0Stargazers:31Issues:3Issues:6
Language:TypeScriptLicense:Apache-2.0Stargazers:22Issues:0Issues:0

self-attestation

Markdown Version of the DHS/CISA Secure Software Development Self Attestation Form.

License:CC0-1.0Stargazers:20Issues:7Issues:0

tlogistry

Transparenty Immutable Container Image Tags

Language:GoLicense:Apache-2.0Stargazers:19Issues:2Issues:0

openssl-fips-test

Test that OpenSSL is configured to be FIPS-compliant

Language:CLicense:Apache-2.0Stargazers:14Issues:6Issues:0

tekton-demo

Tekton and Sigstore Demo

Language:HCLLicense:Apache-2.0Stargazers:6Issues:0Issues:0
Language:GoLicense:Apache-2.0Stargazers:5Issues:0Issues:0

melange-php-demos

PHP demos for Melange + Apko

Language:PHPLicense:MITStargazers:4Issues:0Issues:0

text4shell-policy

ClusterImagePolicy demo for cve-2022-42889 text4shell

Language:JavaLicense:Apache-2.0Stargazers:4Issues:5Issues:1

images

Public Chainguard Images

Language:HCLLicense:Apache-2.0Stargazers:3Issues:1Issues:0

sigstore-custom-policies

Repo to contain files demo'd on the CNCF Webinar on the Sigstore Policy Controller

Language:CUEStargazers:3Issues:0Issues:0
Language:ShellStargazers:3Issues:0Issues:0

tekton-helm-charts

Helm charts for deploying Tekton Pipelines, Dashboard and Chains

Language:SmartyLicense:Apache-2.0Stargazers:3Issues:2Issues:1

.github

Default files to be used for any public repository under the chainguard-dev organization.

License:Apache-2.0Stargazers:2Issues:0Issues:0

chainguard-weaveworks-gitops-demo

End to End Security & Operations with Chainguard & Weave GitOps

Language:MakefileLicense:Apache-2.0Stargazers:2Issues:4Issues:0

hello-wolfi-demo

Demo for the Hello Wolfi workshop

Language:PHPStargazers:2Issues:0Issues:0

ldso-cache

reading and writing of glibc /etc/ld.so.cache files

Language:GoLicense:Apache-2.0Stargazers:2Issues:0Issues:0

go-demo

go demo app

Language:GoLicense:Apache-2.0Stargazers:1Issues:2Issues:0
Language:JavaScriptStargazers:0Issues:0Issues:0
License:Apache-2.0Stargazers:0Issues:0Issues:0

is-sigstore-psychic

Checking sigstore susceptibility to psychic signatures

Language:GoStargazers:0Issues:0Issues:0

k8s-shredder

K8s-shredder - a new way of parking in Kubernetes

License:Apache-2.0Stargazers:0Issues:0Issues:0

minimal_images_for_language_runtimes

Tutorial on building minimal images for languages with Runtimes

Language:DockerfileStargazers:0Issues:0Issues:0

secureframe-policy-minder

Send Slack reminders to personnel in response to Secureframe requirements

Language:GoLicense:Apache-2.0Stargazers:0Issues:0Issues:0

tagfinder

A multithreaded reader to search for SPDX tags in source code

License:Apache-2.0Stargazers:0Issues:0Issues:0

test-vulnerabilities

Repo for testing vulnerabilities scanners

License:Apache-2.0Stargazers:0Issues:0Issues:0