Ecosyste.ms: Packages

An open API service providing package, version and dependency metadata of many open source software ecosystems and registries.

proxy.golang.org "supply-chain" keyword

Top 1.1% on proxy.golang.org
github.com/sigstore/rekor v1.3.6
Software Supply Chain Transparency Log
35 versions - Latest release: about 1 month ago - 496 dependent packages - 789 dependent repositories - 681 stars on GitHub
Top 1.2% on proxy.golang.org
github.com/theupdateframework/go-tuf v0.7.0
Go implementation of The Update Framework (TUF)
27 versions - Latest release: 5 months ago - 650 dependent packages - 1,148 dependent repositories - 531 stars on GitHub
Top 6.2% on proxy.golang.org
github.com/in-toto/in-toto v2.3.0+incompatible
in-toto is a framework to protect supply chain integrity.
20 versions - Latest release: 30 days ago - 773 stars on GitHub
Top 5.2% on proxy.golang.org
github.com/ossf/scorecard-action v1.1.2
Official GitHub Action for OpenSSF Scorecard.
10 versions - Latest release: almost 2 years ago - 140 stars on GitHub
Top 5.4% on proxy.golang.org
github.com/codenotary/cas v1.0.3
Codenotary Community Attestation Service (CAS) for notarization and authentication of digital art...
35 versions - Latest release: over 1 year ago - 171 stars on GitHub
Top 6.7% on proxy.golang.org
github.com/in-toto/witness v0.3.1
Witness is a pluggable framework for software supply chain risk management. It automates, normal...
84 versions - Latest release: 2 months ago - 340 stars on GitHub
Top 5.3% on proxy.golang.org
github.com/devops-kung-fu/bomber v0.4.8 💰
Package main is the entry point for the bomber CLI.
19 versions - Latest release: 5 months ago - 393 stars on GitHub
Top 3.3% on proxy.golang.org
github.com/sigstore/sigstore/pkg/signature/kms/hashivault v1.8.1
Package hashivault implement the interface with hashivault kms service Package hashivault contai...
10 versions - Latest release: 4 months ago - 25 dependent packages - 63 dependent repositories - 394 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/bobcallaway/sigstore removed
Common go library shared across sigstore services and clients
Latest release: 3 days ago - 361 stars on GitHub
Top 3.3% on proxy.golang.org
github.com/sigstore/sigstore/pkg/signature/kms/aws v1.8.1
Package aws implement the interface with amazon aws kms service Package aws contains utilities r...
10 versions - Latest release: 4 months ago - 26 dependent packages - 63 dependent repositories - 394 stars on GitHub
Top 1.3% on proxy.golang.org
github.com/sigstore/sigstore v1.8.3
Common go library shared across sigstore services and clients
33 versions - Latest release: about 1 month ago - 539 dependent packages - 1,014 dependent repositories - 361 stars on GitHub
Top 3.3% on proxy.golang.org
github.com/sigstore/sigstore/pkg/signature/kms/azure v1.8.1
Package azure implement the interface with microsoft azure kms service Package azure contains ut...
10 versions - Latest release: 4 months ago - 26 dependent packages - 63 dependent repositories - 394 stars on GitHub
Top 6.2% on proxy.golang.org
github.com/imjasonh/sigstore/pkg/signature/kms/aws v0.0.104
Package aws implement the interface with amazon aws kms service Package aws contains utilities r...
1 version - Latest release: 12 months ago - 394 stars on GitHub
Top 5.0% on proxy.golang.org
github.com/sigstore/sigstore/test/fuzz v0.0.0-20220808195629-f5a8a4b14d7c
Common go library shared across sigstore services and clients
8 versions - Latest release: almost 2 years ago - 361 stars on GitHub
Top 7.8% on proxy.golang.org
github.com/stacklok/minder v0.0.34
Secure Software Supply Chain Platform
34 versions - Latest release: 2 months ago - 79 stars on GitHub
Top 10.0% on proxy.golang.org
github.com/rdimitrov/tuf-client-cli v0.0.6
TUF client CLI written in Go based on the rdimitrov/go-tuf-metadata library.
6 versions - Latest release: 6 months ago - 0 stars on GitHub
Top 3.3% on proxy.golang.org
github.com/sigstore/sigstore/pkg/signature/kms/gcp v1.8.1
Package gcp implement the interface with google cloud kms service Package gcp contains utilities...
10 versions - Latest release: 4 months ago - 26 dependent packages - 63 dependent repositories - 394 stars on GitHub
Top 2.6% on proxy.golang.org
github.com/flynn/go-tuf v0.7.0
Go implementation of The Update Framework (TUF)
27 versions - Latest release: 5 months ago - 4 dependent packages - 6 dependent repositories - 531 stars on GitHub
Top 9.4% on proxy.golang.org
github.com/theupdateframework/go-tuf/v2
Go implementation of The Update Framework (TUF)
Latest release: 6 days ago - 584 stars on GitHub
Top 9.3% on proxy.golang.org
github.com/kuldeep23907/supply-chain-hlf-platform
This projects keeps track record of any product starting from manufacturer to customer.
Latest release: 7 days ago - 54 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/checkmarx/chainjacking v1.1.2
Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks
3 versions - Latest release: over 2 years ago - 38 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/Checkmarx/chainjacking v1.1.2
Find which of your direct GitHub dependencies is susceptible to RepoJacking attacks
3 versions - Latest release: over 2 years ago - 38 stars on GitHub
Top 8.3% on proxy.golang.org
github.com/stacklok/mediator v0.0.47
Software Supply Chain Security Platform
47 versions - Latest release: 24 days ago - 178 stars on GitHub
github.com/naveensrinivasan/stunning-tribble v0.4.2
supplychain security
7 versions - Latest release: over 2 years ago - 20 dependent repositories - 1 stars on GitHub
Top 7.8% on proxy.golang.org
github.com/k1low/oshka v0.4.1 💰
oshka is a tool for extracting nested CI/CD supply chains and executing commands.
5 versions - Latest release: about 2 years ago - 3 stars on GitHub
Top 7.8% on proxy.golang.org
github.com/k1LoW/oshka v0.4.1 💰
Copyright © 2021 Ken'ichiro Oyama <[email protected]> Permission is hereby granted, free of char...
5 versions - Latest release: about 2 years ago - 3 stars on GitHub
Top 8.3% on proxy.golang.org
github.com/shariq027/scan-deps
Latest release: 9 days ago - 0 stars on GitHub
Top 4.8% on proxy.golang.org
github.com/openclarity/kubeclarity/sbom_db/backend v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
92 versions - Latest release: 4 months ago - 886 stars on GitHub
Top 8.6% on proxy.golang.org
github.com/viswanathkgp12/hf-supply-chain
Demonstrating use of Attribute Based Access Control(ABAC) in HF 2.0
Latest release: 10 days ago - 0 stars on GitHub
Top 4.8% on proxy.golang.org
github.com/openclarity/kubeclarity/backend v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
96 versions - Latest release: 4 months ago - 886 stars on GitHub
Top 7.0% on proxy.golang.org
github.com/timoth-y/chainmetric-iot v0.1.1
Embedded IoT sensor system for harvesting environment data and publishing it onto the permissione...
2 versions - Latest release: almost 3 years ago - 8 stars on GitHub
Top 9.7% on proxy.golang.org
github.com/Portshift/Kubei v2.23.1+incompatible
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
36 versions - Latest release: 4 months ago - 1,201 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/centrifuge/go-centrifuge v1.3.0
Package centrifuge is the root package for go-centrifuge. Currently its empty, but this file enab...
17 versions - Latest release: almost 2 years ago - 70 stars on GitHub
Top 9.7% on proxy.golang.org
github.com/sbs2001/fatbom v0.0.2
fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into ...
2 versions - Latest release: over 1 year ago - 31 stars on GitHub
Top 7.1% on proxy.golang.org
github.com/timoth-y/chainmetric-network v0.1.1
Hyperledger Fabric network for IoT enabled permissioned blockchain with sensor requirements contr...
2 versions - Latest release: almost 3 years ago - 5 stars on
Top 9.8% on proxy.golang.org
github.com/stacklok/frisbee v0.0.15
Throw a tag at and it comes back with a checksum.
15 versions - Latest release: 25 days ago - 13 stars on GitHub
Top 6.0% on proxy.golang.org
github.com/goreleaser/supply-chain-example v1.3.1 💰
Example goreleaser + github actions config with keyless signing and SBOM generation
6 versions - Latest release: about 1 year ago - 48 stars on GitHub
Top 9.8% on proxy.golang.org
github.com/timoth-y/chainmetric-app/lorkhan v0.0.0-20210927100322-8fcaae503021
Mobile client application for the IoT enabled blockchain supply chain controlled by sensor requir...
1 version - Latest release: over 2 years ago - 11 stars on GitHub
Top 6.9% on proxy.golang.org
github.com/timoth-y/chainmetric-app/go-sdk v0.0.0-20210820022110-c64b6c5b6600
Mobile client application for the IoT enabled blockchain supply chain controlled by sensor requir...
1 version - Latest release: over 2 years ago - 8 stars on
Top 8.2% on proxy.golang.org
github.com/codenotary/vcn v1.0.3
Codenotary Community Attestation Service (CAS) for notarization and authentication of digital art...
35 versions - Latest release: over 1 year ago - 171 stars on GitHub
Top 9.9% on proxy.golang.org
github.com/stacklok/boomerang v0.0.15
Throw a tag at and it comes back with a checksum.
15 versions - Latest release: 25 days ago - 13 stars on GitHub
Top 4.8% on proxy.golang.org
github.com/SigStore/rekor v1.3.6
Software Supply Chain Transparency Log
33 versions - Latest release: about 1 month ago - 681 stars on GitHub
Top 6.5% on proxy.golang.org
github.com/cyclonedx/cdxgen v10.4.0+incompatible 💰
Creates CycloneDX Software Bill of Materials (SBOM) for your projects from source and container i...
382 versions - Latest release: 26 days ago - 366 stars on GitHub
Top 6.5% on proxy.golang.org
github.com/CycloneDX/cdxgen v10.4.0+incompatible 💰
Creates CycloneDX Software Bill of Materials (SBOM) for your projects from source and container i...
382 versions - Latest release: 26 days ago - 366 stars on GitHub
Top 5.4% on proxy.golang.org
github.com/centrifuge/pod v1.3.0
Go implementation of Centrifuge POD (Private Off-chain Data) node
17 versions - Latest release: almost 2 years ago - 70 stars on GitHub
Top 6.0% on proxy.golang.org
github.com/openclarity/kubeclarity/runtime_scan/api/v2 v2.7.2
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
3 versions - Latest release: over 1 year ago - 1,102 stars on GitHub
Top 6.0% on proxy.golang.org
github.com/openclarity/kubeclarity/runtime_scan/v2 v2.7.2
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
3 versions - Latest release: over 1 year ago - 1,102 stars on GitHub
Top 6.0% on proxy.golang.org
github.com/openclarity/kubeclarity/shared/v2 v2.7.2
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
3 versions - Latest release: over 1 year ago - 1,102 stars on GitHub
Top 2.7% on proxy.golang.org
github.com/openclarity/kubeclarity/runtime_scan/api v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
86 versions - Latest release: 4 months ago - 4 dependent packages - 1 dependent repositories - 886 stars on GitHub
Top 3.2% on proxy.golang.org
github.com/openclarity/kubeclarity/runtime_scan v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
86 versions - Latest release: 4 months ago - 1 dependent package - 1 dependent repositories - 886 stars on GitHub
Top 4.6% on proxy.golang.org
github.com/openclarity/kubeclarity/runtime_k8s_scanner v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
61 versions - Latest release: 4 months ago - 886 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/openclarity/kubeclarity v2.23.1+incompatible
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
36 versions - Latest release: 4 months ago - 886 stars on GitHub
Top 6.0% on proxy.golang.org
github.com/openclarity/kubeclarity/sbom_db/api/v2 v2.7.2
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
3 versions - Latest release: over 1 year ago - 1,102 stars on GitHub
Top 6.0% on proxy.golang.org
github.com/openclarity/kubeclarity/e2e/vulnerable/v2 v2.7.2
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
2 versions - Latest release: over 1 year ago - 1,102 stars on GitHub
Top 6.0% on proxy.golang.org
github.com/openclarity/kubeclarity/runtime_k8s_scanner/v2 v2.7.2
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
3 versions - Latest release: over 1 year ago - 1,102 stars on GitHub
Top 6.0% on proxy.golang.org
github.com/openclarity/kubeclarity/sbom_db/backend/v2 v2.7.2
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
3 versions - Latest release: over 1 year ago - 1,102 stars on GitHub
Top 6.0% on proxy.golang.org
github.com/openclarity/kubeclarity/backend/v2 v2.7.2
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
3 versions - Latest release: over 1 year ago - 1,102 stars on GitHub
Top 6.0% on proxy.golang.org
github.com/openclarity/kubeclarity/e2e/v2 v2.7.2
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
2 versions - Latest release: over 1 year ago - 1,102 stars on GitHub
Top 6.0% on proxy.golang.org
github.com/openclarity/kubeclarity/cis_docker_benchmark_scanner/v2 v2.7.2
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
3 versions - Latest release: over 1 year ago - 1,102 stars on GitHub
Top 2.7% on proxy.golang.org
github.com/openclarity/kubeclarity/api v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
91 versions - Latest release: 4 months ago - 4 dependent packages - 1 dependent repositories - 886 stars on GitHub
Top 6.0% on proxy.golang.org
github.com/openclarity/kubeclarity/api/v2 v2.7.2
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
3 versions - Latest release: over 1 year ago - 1,102 stars on GitHub
Top 4.8% on proxy.golang.org
github.com/openclarity/kubeclarity/cis_docker_benchmark_scanner v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
46 versions - Latest release: 4 months ago - 886 stars on GitHub
Top 6.0% on proxy.golang.org
github.com/openclarity/kubeclarity/cli/v2 v2.7.2
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
3 versions - Latest release: over 1 year ago - 1,102 stars on GitHub
Top 3.8% on proxy.golang.org
github.com/openclarity/kubeclarity/cli v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
85 versions - Latest release: 4 months ago - 1 dependent package - 1 dependent repositories - 886 stars on GitHub
Top 2.9% on proxy.golang.org
github.com/openclarity/kubeclarity/sbom_db/api v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
56 versions - Latest release: 4 months ago - 2 dependent packages - 1 dependent repositories - 886 stars on GitHub
Top 2.5% on proxy.golang.org
github.com/openclarity/kubeclarity/shared v0.0.0-20240111133845-5f6b41116110
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
111 versions - Latest release: 4 months ago - 7 dependent packages - 1 dependent repositories - 886 stars on GitHub
Top 4.8% on proxy.golang.org
github.com/openclarity/kubeclarity/e2e v0.0.0-20231003113853-217c5fc8c9f1
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
46 versions - Latest release: 7 months ago - 886 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/cisco-open/kubei/cis_docker_benchmark_scanner v0.0.0-20220502081601-03c303128b77
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
10 versions - Latest release: about 2 years ago - 886 stars on GitHub
Top 8.2% on proxy.golang.org
github.com/Portshift/kubei v2.23.1+incompatible
KubeClarity is a tool for detection and management of Software Bill Of Materials (SBOM) and vulne...
36 versions - Latest release: 4 months ago - 885 stars on GitHub
Top 4.1% on proxy.golang.org
github.com/testifysec/witness v0.3.1
Witness is a pluggable framework for software supply chain risk management. It automates, normal...
81 versions - Latest release: 2 months ago - 2 dependent packages - 1 dependent repositories - 253 stars on GitHub
Top 3.7% on proxy.golang.org
github.com/vchain-us/vcn v1.0.3
Codenotary Community Attestation Service (CAS) for notarization and authentication of digital art...
35 versions - Latest release: over 1 year ago - 4 dependent packages - 2 dependent repositories - 171 stars on GitHub
Top 8.6% on proxy.golang.org
github.com/alejandroik/trazavino v0.0.0-20220810000201-be1286109a0e
Wine supply chain traceability system based on ethereum blockhain written in Go implementing DDD ...
1 version - Latest release: over 1 year ago - 1 stars on GitHub
Related Keywords
security 57 sbom 33 kubernetes 32 kubernetes-security 27 effortless-integrations 27 vulnerabilities 27 scanner 27 golang 25 go 20 sigstore 9 cosign 9 security-tools 6 hyperledger-fabric 6 containers 5 bom 5 github-actions 5 blockchain 5 iot 4 tuf 4 hyperledger 4 software-bill-of-materials 3 purl 3 ethereum 3 cyclonedx 3 trust 3 secure-software-development 3 sbom-generator 3 notarization 3 integrity-checker 3 devops 3 code-verification 3 code-signing 3 hacktoberfest 3 centrifuge 2 fintech 2 android 2 internet-of-things 2 dart 2 flutter 2 provenance 2 transparency-log 2 sca 2 attestation 2 verification 2 devsecops 2 saasbom 2 package-url 2 owasp 2 oci 2 mlbom 2 syft 2 docker 2 ios 2 gomobile 2 cpe 1 chaincode 1 smart-contracts 1 goreleaser 1 raspberry-pi 1 signing 1 clean-architecture 1 ddd 1 new-york-university 1 secure-systems-lab 1 github 1 gomodule 1 oss 1 security-automation 1 spdx 1 supplychain 1 vulnerability-scanners 1 cli 1 chain 1 software 1 supply 1 expressjs 1 nodejs 1 reactjs 1 software-supply-chain 1 software-supply-chain-security 1 go-mod 1 dependencies 1 dev 1 osv 1 osv-dev 1 scan-deps 1 security-audit 1 vulnerability-scanning 1 typescript 1 embedded 1