slsaprovenance

There are 0 repository under slsaprovenance topic.

slsa-framework / slsa-github-generator
Language-agnostic SLSA provenance generation for Github Actions
security security-hardening security-tools slsa slsaprovenance
Language:Go 380
deislabs / image-layer-provenance
Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.
container container-image containerization containers docker oci oci-image oras security security-audit security-tools vulnerabilities vulnerability vulnerability-assessment vulnerability-management provenance slsa slsaprovenance cve
Language:Go 40
jenstroeger / python-package-template
An opinionated Python package/application template repository, with SLSA and SBOM support built in, enabled for security scanners, code linters, typing, testing and code coverage monitoring, and release automation for reproducible builds.
python-package conventional-commits python release-automation security-automation slsa slsaprovenance template-repository secure-by-design reproducible-builds sbom
Language:Makefile 33
GoTurkiye / goreleaser-supply-chain-example
A demonstration of how GoReleaser can help us to make software supply chain more secure by using bunch of tools such as cosign, syft, grype, slsa-provenance
goreleaser slsa slsaprovenance cosign sbom syft grype githubactions
Language:Go 4

slsa-framework / slsa-github-generator