Pinned Repositories
etcd
Distributed reliable key-value store for the most critical data of a distributed system
operator-hub-demo
ProPPR_GraphParser
ProPPR Graph Parser
ProPPR_VisualGraph
sbom-attest
seclkeywrap
simple-ocicrypt-keyprovider
slsa
Supply-chain Levels for Software Artifacts
tornjak-old
lumjjb's Repositories
lumjjb/sbom-attest
lumjjb/simple-ocicrypt-keyprovider
lumjjb/slsa
Supply-chain Levels for Software Artifacts
lumjjb/slsa-github-generator-go
lumjjb/bom
A utility to generate SPDX-compliant Bill of Materials manifests
lumjjb/community-vex
OpenVEX project community documentation
lumjjb/go-vex
Go module to generate and transform VEX documents
lumjjb/guac
lumjjb/guac-docs
lumjjb/helm-charts
Helm Chart for deploying GUAC
lumjjb/meetings
This repository stores meetings minutes for the SPDX project
lumjjb/ntia-conformance-checker
Check SPDX SBOM for NTIA minimum elements
lumjjb/osv-test
lumjjb/osv.dev
Open source vulnerability DB and triage service.
lumjjb/people
Stores the data that will populate the various people listings on cncf.io
lumjjb/pipeline
A cloud-native Pipeline resource.
lumjjb/sample-golang-prov
lumjjb/sample-python-app
Let's build a simple containerized python app!
lumjjb/sig-software-supply-chain
SIG Software Supply Chain
lumjjb/spdx-3-model
lumjjb/spdx-examples
Examples of SPDX files for software combinations
lumjjb/spdx-spec
The SPDX specification in MarkDown and HTML formats.
lumjjb/spec
OpenVEX Specification
lumjjb/syft
CLI tool and library for generating a Software Bill of Materials from container images and filesystems
lumjjb/toc
⚖️Technical Oversight Committee (TOC)
lumjjb/tools-golang
Collection of Go packages to work with SPDX files
lumjjb/tools-python
A Python library to parse, validate and create SPDX documents.
lumjjb/vexctl
A tool to create, transform and attest VEX metadata
lumjjb/vuln
[mirror] the database client and tools for the Go vulnerability database
lumjjb/wg-securing-software-repos
OpenSSF Working Group on Securing Software Repositories