#Cosign
Showing 12 of 12 repositories tagged #cosign, ranked by stars
The Airgap Native Package Manager for Kubernetes
Remove all the resources from an AWS account
Common go library shared across sigstore services and clients
An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster
Import Helm Charts to OCI registries, optionally with vulnerability patching
Integrates Spiffe and Vault to have secretless authentication
Compage - Low-Code Framework to develop Rest API, gRPC, dRPC, GraphQL, WebAssembly, microservices, FaaS, Temporal workloads, IoT and edge services, K8s controllers, K8s CRDs, K8s custom APIs, K8s Operators, K8s hooks, etc. with minimal coding and by automatically applying best practice methods like software supply chain security measures, SBOM, openAPI, cloudevents, etc. Auto generate code after defining requirements in UI as diagram.
๐ DevSecOps intro elective โ 10 hands-on labs + 2 bonus hardening OWASP Juice Shop: threat modeling (STRIDE/Threagile), signed commits & secret scanning, SBOM/SCA, SAST + DAST, IaC security (Checkov/KICS), container & supply-chain hardening (Trivy, Cosign), runtime detection with Falco, and DefectDojo vuln management.
The Anti-Virus for AI Artifacts & RAG Firewall. A static analysis tool scanning Models and Notebooks for RCE, Datasets and RAG docs for Data Poisoning, PII, and Prompt Injections. Secure your AI Supply Chain.
Sovereign Engine is a multi-cloud infrastructure platform that provides unified deployment, cost management, and security verification across AWS, Azure, GCP, DigitalOcean, Hetzner, and OVH.Built with Go and Crossplane, Sovereign Engine enables infrastructure-as-code automation with real-time monitoring, automated cleanup policies, and security
Open-source Helm charts, forged to last. The alternative to Bitnami โ official upstream images, Apache 2.0 licensed, Cosign signed.
Docker Registry Authentication Made Simple