Ecosyste.ms: Packages
An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.
proxy.golang.org "slsaprovenance" keyword
Top 2.3% on proxy.golang.org
33 versions - Latest release: 2 months ago - 10 dependent packages - 16 dependent repositories - 162 stars on GitHub
github.com/slsa-framework/slsa-github-generator v1.10.0
Language-agnostic SLSA provenance generation for Github Actions33 versions - Latest release: 2 months ago - 10 dependent packages - 16 dependent repositories - 162 stars on GitHub
Top 8.2% on proxy.golang.org
4 versions - Latest release: over 2 years ago - 4 stars on GitHub
github.com/goturkiye/goreleaser-supply-chain-example v0.4.0
A demonstration of how GoReleaser can help us to make software supply chain more secure by using ...4 versions - Latest release: over 2 years ago - 4 stars on GitHub
Top 8.2% on proxy.golang.org
3 versions - Latest release: over 1 year ago - 37 stars on GitHub
github.com/johnsonshi/image-manifest-layer-history v0.0.3
Container image provenance spec that allows tracing CVEs detected in registry images back to a CV...3 versions - Latest release: over 1 year ago - 37 stars on GitHub
Top 8.2% on proxy.golang.org
4 versions - Latest release: over 2 years ago - 4 stars on GitHub
github.com/GoTurkiye/goreleaser-supply-chain-example v0.4.0
Copyright © 2022 NAME HERE <EMAIL ADDRESS> Licensed under the Apache License, Version 2.0 (the "...4 versions - Latest release: over 2 years ago - 4 stars on GitHub
Related Keywords
slsa
4
syft
2
sbom
2
grype
2
goreleaser
2
githubactions
2
cosign
2
security-tools
2
security
2
vulnerability-management
1
vulnerability-assessment
1
vulnerability
1
vulnerabilities
1
security-audit
1
provenance
1
oras
1
oci-image
1
oci
1
docker
1
cve
1
containers
1
containerization
1
container-image
1
container
1
security-hardening
1