Skip to content
@sigstore

sigstore

Software Supply Chain Security
README.md
sigstore logo

Sign. Verify. Protect. Making sure your software is what it claims to be.

Learn more at https://sigstore.dev/

Pinned Loading

  1. cosign cosign Public

    Code signing and transparency for containers and binaries

    Go 4.7k 565

  2. fulcio fulcio Public

    Sigstore OIDC PKI

    Go 681 142

  3. rekor rekor Public

    Software Supply Chain Transparency Log

    Go 937 171

  4. sigstore-rs sigstore-rs Public

    An experimental Rust crate for sigstore

    Rust 185 57

  5. sigstore-python sigstore-python Public

    A Sigstore client written in Python

    Python 255 52

  6. sigstore-java sigstore-java Public

    java clients for sigstore

    Java 51 22

Repositories

Showing 10 of 61 repositories
  • gitsign Public

    Keyless Git signing using Sigstore

    sigstore/gitsign’s past year of commit activity
    Go 972 65 23 (1 issue needs help) 3 Updated Feb 25, 2025
  • sigstore-java Public

    java clients for sigstore

    sigstore/sigstore-java’s past year of commit activity
    Java 51 Apache-2.0 22 23 12 Updated Feb 25, 2025
  • sigstore-rs Public

    An experimental Rust crate for sigstore

    sigstore/sigstore-rs’s past year of commit activity
    Rust 185 Apache-2.0 57 38 (11 issues need help) 10 Updated Feb 25, 2025
  • sigstore-conformance Public

    Conformance testing for Sigstore clients

    sigstore/sigstore-conformance’s past year of commit activity
    Python 8 12 21 2 Updated Feb 25, 2025
  • policy-controller Public

    Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supply-chain metadata from cosign

    sigstore/policy-controller’s past year of commit activity
    Go 128 58 53 16 Updated Feb 25, 2025
  • community Public

    General sigstore community repo

    sigstore/community’s past year of commit activity
    41 Apache-2.0 49 16 1 Updated Feb 25, 2025
  • rekor Public

    Software Supply Chain Transparency Log

    sigstore/rekor’s past year of commit activity
    Go 937 Apache-2.0 171 77 9 Updated Feb 25, 2025
  • sigstore-go Public

    Go library for Sigstore signing and verification

    sigstore/sigstore-go’s past year of commit activity
    Go 55 Apache-2.0 28 16 7 Updated Feb 25, 2025
  • timestamp-authority Public

    RFC3161 Timestamp Authority

    sigstore/timestamp-authority’s past year of commit activity
    Go 80 Apache-2.0 39 7 1 Updated Feb 25, 2025
  • sigstore-devops-tools Public

    Tools & services used to help in the development flow of sigstore

    sigstore/sigstore-devops-tools’s past year of commit activity
    Go 6 Apache-2.0 3 0 0 Updated Feb 25, 2025
View all repositories