adityasaky
Ph.D. candidate at New York University @secure-systems-lab; various things @in-toto; @gittuf maintainer; Intern @bloomberg Jun-Dec 2024
NYU @secure-systems-labBrooklyn, NY
Pinned Repositories
availability-woes
Incidents, high profile or otherwise, where build systems or package installations were impacted due to dependencies being unavailable.
bru
essd
A simple tool to sign and verify using DSSE
go-metapackage
in-toto-sbom-demo
pose-estimation
gittuf
A security layer for Git repositories
attestation
in-toto Attestation Framework
in-toto
in-toto is a framework to protect supply chain integrity.
ITE
in-toto Enhancements
adityasaky's Repositories
adityasaky/essd
A simple tool to sign and verify using DSSE
adityasaky/adityasaky
All the cool kids are doing it, so why not?
adityasaky/cncf-gitdm
📜Fork for tracking CNCF projects
adityasaky/cncf-tag-security
🔐CNCF Special Interest Group on Security -- secure access, policy control, privacy, auditing, explainability and more!
adityasaky/dsse
A specification for signing methods and formats used by Secure Systems Lab projects.
adityasaky/fulcio
Sigstore OIDC PKI
adityasaky/gitsign
Keyless Git signing using Sigstore
adityasaky/gittuf-lua-prototype
adityasaky/go-git
A highly extensible Git implementation in pure Go.
adityasaky/go-git-fixtures
Several git fixtures to run go-git tests
adityasaky/go-securesystemslib
Cryptographic and general-purpose routines for Golang Secure Systems Lab projects at NYU
adityasaky/in-toto
in-toto is a framework to protect supply chain integrity.
adityasaky/in-toto-attestation
ITE-6 Attestation Definitions
adityasaky/in-toto-demo
Securing Alice's, Bob's and Carl's software supply chain using in-toto
adityasaky/in-toto-docs
Specification and other related documents.
adityasaky/in-toto-golang
A go implementation of in-toto verifylib
adityasaky/in-toto-rs
A rust implementation of in-toto
adityasaky/in-toto.io
adityasaky/ITE
in-toto Enhancements
adityasaky/nyu-arch-repo
adityasaky/ossf-tac
Technical Advisory Council
adityasaky/ossf-wg-supply-chain-integrity
Our objective is to enable open source maintainers, contributors and end-users to understand and make decisions on the provenance of the code they maintain, produce and use.
adityasaky/sigstore
Common library shared across sigstore services
adityasaky/sigstore-go
Go library for Sigstore signing and verification
adityasaky/sigstore-protobuf-specs
Protocol Buffer specifications
adityasaky/slsa
Supply-chain Levels for Software Artifacts
adityasaky/test-github-provenance
adityasaky/test-transport
adityasaky/tuf-specification
The Update Framework specification
adityasaky/vbdox