jspeed-meyers
Head of Chainguard Labs. Likes: open source software security, software supply chain security, @wolfi-dev
@chainguard-devVirginia, USA
Pinned Repositories
bom-shelter
A place to systematically store software bill of materials (SBOM) documents.
keyprints
Ever wanted to try and determine user identity based on keystroke patterns? This is a sample project with the basics in place..
ntia-conformance-checker
2022 GSoC project to check for NTIA minimum elements
pcap2map
Place IP's from PCAP on world map
pkgscan
Scan PyPI package metadata to assess security risks
presentations
copies of presentations
pypi-scan
Scan pypi for typosquatting
ntia-conformance-checker
Check SPDX SBOM for NTIA minimum elements
os
Main package repository for production Wolfi images
jspeed-meyers's Repositories
jspeed-meyers/ntia-conformance-checker
2022 GSoC project to check for NTIA minimum elements
jspeed-meyers/presentations
copies of presentations
jspeed-meyers/bom-shelter
A place to systematically store software bill of materials (SBOM) documents.
jspeed-meyers/protobom
A universal SBOM representation in protocol buffers
jspeed-meyers/.github
Wolfi Organization README
jspeed-meyers/advisories
Security advisory data for Wolfi
jspeed-meyers/apko
Build OCI images using APK directly without Dockerfile
jspeed-meyers/bad-snakes-icse23-artifacts
The Artifacts for ICSE 2023 paper: Bad Snakes: Understanding and Improving Python Package Index Malware Scanning
jspeed-meyers/bom
A utility to generate SPDX-compliant Bill of Materials manifests
jspeed-meyers/contains-oss
jspeed-meyers/cosign
Container Signing
jspeed-meyers/cyclonedx-go
Go library to consume and produce CycloneDX Software Bill of Materials (SBOM)
jspeed-meyers/darkfiles
Darkfiles finds orphaned files in container images and makes them to bad deeds
jspeed-meyers/edu
Educational Resources for Software Supply Chain Security
jspeed-meyers/fulcio
Sigstore OIDC PKI
jspeed-meyers/GitGeo
Discover the geography of open-source software.
jspeed-meyers/gitscrape
Scrape git* for data
jspeed-meyers/go-test
testing go code
jspeed-meyers/images
Public Chainguard Images
jspeed-meyers/images-research
jspeed-meyers/jspeed-meyers
jspeed-meyers/juliatutorial
A tutorial for the Julia language inspired by the Python tutorial
jspeed-meyers/os
Main package repository for production Wolfi images
jspeed-meyers/packbench
benchmark for packaging with LLMs
jspeed-meyers/rekor
Software Supply Chain Transparency Log
jspeed-meyers/rekor-stats
jspeed-meyers/sigstore-the-local-way
sigstore installation walkthrough, local
jspeed-meyers/sigstore-website
Codebase for sigstore.dev
jspeed-meyers/tools-golang
Collection of Go packages to work with SPDX files
jspeed-meyers/tools-python
A Python library to parse, validate and create SPDX documents.