compare wheel built from git with what's on pypi
-
Updated
May 3, 2022 - Python
#
software-supply-chain
Here are 32 public repositories matching this topic...
A site for an IQT R&D initiative on software supply chain security.
-
Updated
Jan 19, 2021
Dev tool to aggregate and focus on the changelog relevant to your codebase
-
Updated
Sep 10, 2023 - TypeScript
This repo accumulate underlying data and analysis results for assessing the current landscape of open-source and proprietary tools related to Software Bill of Materials (SBOM). We additionally compiled our findings into a comprehensive spreadsheet detailing 86 tools and their use cases.
-
Updated
Mar 21, 2024 - Java
Sample CI/CD pipeline for creating container images with provenance details.
containers
signatures
software-supply-chain
signature-verification
notary
sigstore
software-supply-chain-security
-
Updated
Mar 15, 2024 - Shell
A proof-of-concept SLSA provenance generator for Buildkite.
-
Updated
Oct 20, 2021 - Go
🗒️ Researching & exploring how to mitigate malicious 3rd-party packages (e.g. npm, pip, rubygems ...etc)
-
Updated
Apr 12, 2018 - Shell
software supply chain protection for javascript and python dependencies 🔐
security
software-supply-chain
hacktoberfest
security-scanner
vulnerability-assessment
vulnerability-scanner
-
Updated
Nov 10, 2023 - TypeScript
Prototype Open Source Software Nutrition Labels
-
Updated
Dec 15, 2023 - TypeScript
An ongoing & curated collection of awesome software best practices and techniques, libraries and frameworks, E-books and videos, websites, blog posts, links to github Repositories, technical guidelines and important resources about Software in Cybersecurity
software-engineering
software-development
software-testing
software-supply-chain
software-security
software-factory
software-team
software-supply-chain-security
-
Updated
Mar 8, 2023
Capstone project assessing the current state of the software supply chain in open-source projects
-
Updated
Apr 11, 2023 - Python
The ChaordicLedger is the implementation of a design for a combination of Distributed Ledger Technology (DLT) and a Distributed File System (DFS) to create a secure, enterprise-grade platform for storing interlinked project artifacts.
business-intelligence
development-workflow
distributed-storage
distributed-file-system
obsidian
software-supply-chain
blockchain-technology
distributed-ledger-technology
smart-contract
ipfs-blockchain
digital-transformation
-
Updated
Jan 9, 2024 - Shell
A malicious package to demonstrate the importance of software supply chain security.
-
Updated
Sep 20, 2019 - Go
SLSA level 3 action
-
Updated
Apr 26, 2024 - Go
A simple web app software supply chain monitoring toolkit
-
Updated
Aug 5, 2022 - JavaScript
Repository for the SBOM Harbor.
-
Updated
Sep 18, 2023 - Rust
Sharing software supply chain security open source projects
kubernetes
security
devops
dependency-analysis
supply-chain
cicd
software-supply-chain
security-tools
software-composition-analysis
vulnerability-scanner
sast
sbom
supply-chain-security
software-supply-chain-security
-
Updated
Dec 19, 2022
Github Action implementation of SLSA Provenance Generation
security
provenance
software-supply-chain
hacktoberfest
security-tools
github-actions
github-action
in-toto
slsa
-
Updated
May 20, 2024 - Go
🔐 Shim to easily install OWASP dependency-check-cli into Python projects
python
security
security-audit
dependency-analysis
owasp
cli-utility
vulnerability-detection
software-supply-chain
cve-scanning
software-composition-analysis
-
Updated
Jun 22, 2021 - Python
Improve this page
Add a description, image, and links to the software-supply-chain topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the software-supply-chain topic, visit your repo's landing page and select "manage topics."