SIGSTORE

sigstore-logo

sigstore is a non-profit , public good, software cryptographic signing service.
#SimilarOrganizations #Event #Website #More

SIGSTORE

Social Links:

linkedin

Linkedin

Industry:
Computer Network Security

Founded:
2021-01-01

Address:
London, England, United Kingdom

Country:
United Kingdom

Website Url:
http://www.sigstore.dev

Status:
Active

Email Addresses:
[email protected]


Similar Organizations

digital-assurance-logo

Digital Assurance

Digital Assurance develops a range of security testing, information assurance and security training products and services.

digital-security-logo

Digital Security

Digital Security is a provider of cybersecurity auditing, consultancy, and training services.

Newest Events participated

kubecon-cloudnativecon-north-america-2021_event_image Participated in KubeCon + CloudNativeCon North America 2021 on 2021-10-11 as sponsor

Official Site Inspections

http://www.sigstore.dev

  • Host name: acd89244c803f7181.awsglobalaccelerator.com
  • IP address: 75.2.60.5
  • Location: Seattle United States
  • Latitude: 47.54
  • Longitude: -122.3032
  • Metro Code: 819
  • Timezone: America/Los_Angeles
  • Postal: 98108

Loading ...

More informations about "sigstore"

Overview - Sigstore

Sigstore is an open source project for improving software supply chain security. The Sigstore framework and tooling empowers software developers and consumers to securely sign and verify software artifacts such as release files, โ€ฆSee details»

sigstore - GitHub

Sigstore.dev; Learn more about verified organizations. 1.1k followers United States of America; https://sigstore.dev; @projectsigstore; [email protected]; Overview Repositories Projects โ€ฆSee details»

Software safety, integrated - sigstore

Sigstore tooling supports signing any artifacts, such as files or containers. Rekor supports many file formats, such as in-toto attestations, JARs, RPMs, or Alpine images. Sigstore is also actively being integrated with package repositories to โ€ฆSee details»

Linux Foundation Announces Free sigstore Signing Service to โ€ฆ

Mar 9, 2021 Red Hat, Google and Purdue University lead efforts to ensure software maintainers, distributors and consumers have full confidence in their code, artifacts and tooling SAN โ€ฆSee details»

Driven forward by community - sigstore

Nov 20, 2023 Developing with the continuous help, support and encouragement from the Linux Foundation, Red Hat, Purdue, Google and open source experts across the industry, sigstoreโ€™s โ€ฆSee details»

Sigstore Graduates: A Monumental Step Towards Secure Software โ€ฆ

Mar 20, 2024 What is Sigstore? For those unfamiliar, Sigstore is a suite of tools designed to streamline secure software signing & verification of artifacts such as binaries, containers and โ€ฆSee details»

sigstore, the free digital signing service for open source supply โ€ฆ

Nov 4, 2021 sigstore was created earlier this year to address the massive gap for an easy, trustable and efficient digital signing tool to confirm the provenance (origin) of software. Since โ€ฆSee details»

Sigstore: An open answer to software supply chain โ€ฆ

Jul 21, 2021 Sigstore is an open source project originally conceived and prototyped at Red Hat and now under the auspices of the Linux Foundation with backing from Red Hat, Google and other IT leaders. Sigstore offers a method โ€ฆSee details»

SigstoreCon 2024: Advancing Software Supply Chain Security

Nov 12, 2024 By Ashwin Ramaswami. On November 12, 2024, the software security community gathered in Salt Lake City for SigstoreCon: Supply Chain Day, co-located with KubeCon North โ€ฆSee details»

Donโ€™t Panic: A Playbook for Handling Account โ€ฆ

Apr 25, 2022 This process can form the basis of a playbook for any organization using Sigstore to verify software. Handling a compromise. In the event of a compromised account, the first thing to do is contain the situation: prevent the โ€ฆSee details»

Adopting Sigstore Incrementally - Linux Foundation

Aug 10, 2022 This post is authored by Hayden Blauzvern and originally appeared on Sigstoreโ€™s blog. Sigstore is a new standard for signing, verifying, and protecting software. It is a project of โ€ฆSee details»

Sigstore - An OpenSSF Graduated Project - Sigstore Blog

Mar 14, 2024 Sigstore Graduates: A Monumental Step Towards Secure Software. Supply chain security took a giant leap forward this month as Sigstore officially became a graduated project โ€ฆSee details»

Our foundations of trust - sigstore

An open, accessible foundation behind the policies and protocols sigstore needs to work, grounded in an open source, distributed community. Trust root: operating in the open The โ€ฆSee details»

Modern artifact signing with Cosign, what works and what hurts

Nov 8, 2024 I downloaded the main file and the Sigstore bundle, and looked at their Sigstore documentation to construct the command. Although their examples use a python pip module โ€ฆSee details»

Eclipse Foundation Embraces Sigstore

As part of our ongoing commitment to fortifying the security of our software development processes, weโ€™re excited to announce a significant enhancement for all Eclipse Foundation โ€ฆSee details»

Quickstart - Sigstore

Sigstore empowers software developers to securely sign software artifacts and record signatures in a tamper-resistant public log.See details»

sigstore - PyPI

Usage: sigstore verify identity [-h] [-v] [--certificate FILE] [--signature FILE] [--bundle FILE] [--offline] --cert-identity IDENTITY --cert-oidc-issuer URL FILE_OR_DIGEST [FILE_OR_DIGEST โ€ฆSee details»

Cosign - Sigstore

Sigstore empowers software developers to securely sign software artifacts and record signatures in a tamper-resistant public log.See details»

Python - Sigstore

Sigstore is a Python tool for generating and verifying Sigstore signatures. You can use it to sign and verify Python package distributions, or anything else! Full project documentation can be โ€ฆSee details»