Red Hat Trusted Artifact Signer
Midstream production of Sigstore.dev for Red Hat Trusted Artifact Signer
United States of America
Pinned Repositories
artifact-signer-ansible
Ansible Collection for RHTAS
cosign
Container Signing
fulcio
Sigstore OIDC PKI
gitsign
Keyless Git signing using Sigstore
rekor
Software Supply Chain Transparency Log
secure-sign-operator
Kubernetes Operator for deploying and managing Sigstore components like Fulcio, Rekor, TSA, and TUF.
sigstore-ansible
Automation to deploy the sigstore ecosystem on Virtual Machines
sigstore-ocp
sigstore helm-charts and build scripts opinionated for running on OCP and RHEL
trillian
A transparent, highly scalable and cryptographically verifiable data store.
trusted-foundations
Red Hat Trusted Artifact Signer's Repositories
securesign/sigstore-ocp
sigstore helm-charts and build scripts opinionated for running on OCP and RHEL
securesign/secure-sign-operator
Kubernetes Operator for deploying and managing Sigstore components like Fulcio, Rekor, TSA, and TUF.
securesign/artifact-signer-ansible
Ansible Collection for RHTAS
securesign/sigstore-ansible
Automation to deploy the sigstore ecosystem on Virtual Machines
securesign/pipelines-demo
A repository holding a few openshift-pipelines demos leveraging securesign repositories to demostrate basic Secure Supply Chain practices.
securesign/trusted-foundations
securesign/fulcio
Sigstore OIDC PKI
securesign/quickstarts
Red Hat Trusted Artifact Signer's quickstarts
securesign/cosign
Container Signing
securesign/gitsign
Keyless Git signing using Sigstore
securesign/rekor
Software Supply Chain Transparency Log
securesign/segment-backup-job
securesign/sigstore-e2e
securesign/timestamp-authority
RFC3161 Timestamp Authority
securesign/trillian
A transparent, highly scalable and cryptographically verifiable data store.
securesign/actions
A Github repo that stores all of securesigns reusable Github actions.
securesign/certificate-transparency-go
Auditing for TLS certificates (Go code)
securesign/community-operators-prod
community-operators metadata backing OpenShift OperatorHub
securesign/e2e-gitsign-test
This is a dummy repository that aims to be storage for testing gitsigned commits
securesign/fbc
File-based Catalogs
securesign/go-version-package
securesign/helm-charts
Helm charts for sigstore project
securesign/pipelines
Red Hat Trusted Artifact Signer's Konflux Build Pipelines
securesign/policy-controller
Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supply-chain metadata from cosign
securesign/rekor-search-ui
Search Rekor for entries
securesign/scaffolding
Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.
securesign/sigstore-rs
An experimental Rust crate for sigstore
securesign/structural-tests
Securesign project structural and acceptance tests
securesign/tough
Rust libraries and tools for using and generating TUF repositories
securesign/trusted-artifact-signer-hcc-ui
Red Hat Trusted Artifact Signer for the Hybrid Cloud Console