Skip to content

@in-toto in-toto

Change the repository type filter

All

    Repositories list

    42 repositories

    • archivista

      Public
      Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for software artifacts.
      Go
      Apache License 2.0
      2368255Updated Oct 25, 2024Oct 25, 2024

    • in-toto-golang

      Public
      A Go implementation of in-toto. in-toto is a framework to protect software supply chain integrity.
      securitysoftware-supply-chainin-toto
      Go
      Other
      51130275Updated Oct 25, 2024Oct 25, 2024

    • witness

      Public
      Witness is a pluggable framework for software supply chain risk management. It automates, normalizes, and verifies software artifact provenance.
      supply-chainverificationattestationsecurity-toolssecurity
      Go
      Apache License 2.0
      57409666Updated Oct 25, 2024Oct 25, 2024

    • demo

      Public
      Securing Alice's, Bob's and Carl's software supply chain using in-toto
      Python
      358633Updated Oct 25, 2024Oct 25, 2024

    • attestation-verifier

      Public
      Prototype in-toto attestation verifier based on ITE-10 and ITE-11 layouts
      in-toto
      Go
      Other
      71544Updated Oct 24, 2024Oct 24, 2024

    • scai-demos

      Public
      Software Supply Chain Attribute Integrity (SCAI) Demos and CLI tools
      clidemosattestationssoftware-supply-chain-security
      Go
      Apache License 2.0
      41811Updated Oct 22, 2024Oct 22, 2024

    • in-toto

      Public
      in-toto is a framework to protect supply chain integrity.
      securitysupply-chainnew-york-universitysecure-systems-lab
      Python
      Other
      137872428Updated Oct 21, 2024Oct 21, 2024

    • go-witness

      Public
      Go implementation of witness
      Go
      Apache License 2.0
      1924208Updated Oct 21, 2024Oct 21, 2024

    • friends

      Public
      Friends of in-toto! A place to record integrations and adoptions of the in-toto specification.
      Python
      111238Updated Oct 17, 2024Oct 17, 2024

    • attestation

      Public
      in-toto Attestation Framework
      attestationsoftware-supply-chain-security
      Go
      Other
      64237546Updated Oct 8, 2024Oct 8, 2024

    • apt-transport-in-toto

      Public
      in-toto transport for apt
      Python
      Other
      6881Updated Sep 25, 2024Sep 25, 2024

    • in-toto.io

      Public
      The in-toto website and documentation
      HTML
      192160Updated Sep 6, 2024Sep 6, 2024

    • in-toto-rs

      Public
      A rust implementation of in-toto
      securitysoftware-supply-chain
      Rust
      MIT License
      143246Updated Jul 26, 2024Jul 26, 2024

    • in-toto-java

      Public
      A Java implementation of in-toto runlib
      Java
      MIT License
      1312517Updated Jul 23, 2024Jul 23, 2024

    • ITE

      Public
      in-toto Enhancements
      Other
      151962Updated Jul 18, 2024Jul 18, 2024

    • ite-4-demo-test-repo

      Public
      Python
      1000Updated Jul 17, 2024Jul 17, 2024

    • community

      Public
      in-toto is a framework to secure the software supply chain.
      cncfsoftware-supply-chainin-totosoftware-supply-chain-security
      106783Updated Jun 26, 2024Jun 26, 2024

    • in-toto-jenkins-plugin

      Public
      A Jenkins plugin to track steps and create in-toto link metadata
      Java
      MIT License
      14554Updated Jun 14, 2024Jun 14, 2024

    • in-toto-inspections

      Public
      A set of common in-toto inspections
      Python
      MIT License
      3100Updated May 27, 2024May 27, 2024

    • specification

      Public
      Specification and other related documents.
      Python
      MIT License
      253992Updated May 15, 2024May 15, 2024

    • rebuilderd-website

      Public
      Arch Linux Rebuilderd status webpage (read-only mirror)
      JavaScript
      MIT License
      6000Updated Apr 11, 2024Apr 11, 2024

    • layout-web-tool

      Public archive
      A flask app that helps to create, modify and visualize in-toto layouts.
      Python
      MIT License
      82312Updated Apr 11, 2024Apr 11, 2024

    • in-toto-testing

      Public
      Python
      0310Updated Feb 24, 2024Feb 24, 2024

    • Dockerfiles

      Public
      Dockerfile
      1501Updated Jan 29, 2024Jan 29, 2024

    • windows-setup

      Public
      1000Updated May 8, 2023May 8, 2023

    • image-resources

      Public
      This repo contains image-related resources for in-toto
      2100Updated Jan 15, 2023Jan 15, 2023

    • github-action

      Public
      in-toto provenance github action
      JavaScript
      0850Updated Oct 31, 2022Oct 31, 2022

    • ite-4-demo

      Public
      Python
      2100Updated Oct 26, 2022Oct 26, 2022

    • securesystemslib

      Public
      Cryptographic and general-purpose routines for Secure Systems Lab projects at NYU
      Python
      MIT License
      49010Updated Oct 11, 2022Oct 11, 2022

    • rebuilderd

      Public
      Independent verification of binary packages - reproducible builds
      Rust
      GNU General Public License v3.0
      24310Updated Aug 9, 2022Aug 9, 2022