Skip to content
@sigstore

sigstore

Software Supply Chain Security
README.md
sigstore logo

Sign. Verify. Protect. Making sure your software is what it claims to be.

Learn more at https://sigstore.dev/

Pinned Loading

  1. cosign cosign Public

    Code signing and transparency for containers and binaries

    Go 4.6k 547

  2. fulcio fulcio Public

    Sigstore OIDC PKI

    Go 662 139

  3. rekor rekor Public

    Software Supply Chain Transparency Log

    Go 906 164

  4. sigstore-rs sigstore-rs Public

    An experimental Rust crate for sigstore

    Rust 172 53

  5. sigstore-python sigstore-python Public

    A Sigstore client written in Python

    Python 235 49

  6. sigstore-java sigstore-java Public

    java clients for sigstore

    Java 45 21

Repositories

Showing 10 of 60 repositories
  • fulcio Public

    Sigstore OIDC PKI

    sigstore/fulcio’s past year of commit activity
    Go 662 Apache-2.0 139 52 (1 issue needs help) 13 Updated Dec 16, 2024
  • scaffolding Public

    Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.

    sigstore/scaffolding’s past year of commit activity
    HCL 61 Apache-2.0 57 10 9 Updated Dec 16, 2024
  • rekor-monitor Public

    Log monitor for Rekor to verify immutability and monitor entries

    sigstore/rekor-monitor’s past year of commit activity
    Go 26 Apache-2.0 25 17 1 Updated Dec 16, 2024
  • sigstore-probers Public

    Probers for sigstore infrastructure

    sigstore/sigstore-probers’s past year of commit activity
    Go 4 Apache-2.0 13 4 (1 issue needs help) 3 Updated Dec 16, 2024
  • root-signing Public

    TUF repository for Sigstore trust root

    sigstore/root-signing’s past year of commit activity
    Makefile 90 Apache-2.0 81 18 0 Updated Dec 15, 2024
  • root-signing-staging Public

    Staging TUF repository for Sigstore trust root

    sigstore/root-signing-staging’s past year of commit activity
    4 Apache-2.0 6 5 0 Updated Dec 15, 2024
  • policy-controller Public

    Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supply-chain metadata from cosign

    sigstore/policy-controller’s past year of commit activity
    Go 123 55 53 7 Updated Dec 14, 2024
  • cosign Public

    Code signing and transparency for containers and binaries

    sigstore/cosign’s past year of commit activity
    Go 4,565 Apache-2.0 547 229 (1 issue needs help) 21 Updated Dec 14, 2024
  • sigstore-js Public

    Code-signing for npm packages

    sigstore/sigstore-js’s past year of commit activity
    TypeScript 158 Apache-2.0 23 4 4 Updated Dec 13, 2024
  • sigstore-python Public

    A Sigstore client written in Python

    sigstore/sigstore-python’s past year of commit activity
    Python 235 49 35 (1 issue needs help) 2 Updated Dec 13, 2024
View all repositories

Top languages

Loading…

Most used topics

Loading…