Red Hat Trusted Artifact Signer
Midstream production of Sigstore.dev for Red Hat Trusted Artifact Signer
United States of America
Pinned Repositories
artifact-signer-ansible
Ansible Collection for RHTAS
cosign
Container Signing
fulcio
Sigstore OIDC PKI
gitsign
Keyless Git signing using Sigstore
rekor
Software Supply Chain Transparency Log
secure-sign-operator
Kubernetes Operator for deploying and managing Sigstore components like Fulcio, Rekor, TSA, and TUF.
sigstore-ansible
Automation to deploy the sigstore ecosystem on Virtual Machines
sigstore-ocp
sigstore helm-charts and build scripts opinionated for running on OCP and RHEL
trillian
A transparent, highly scalable and cryptographically verifiable data store.
trusted-foundations
Red Hat Trusted Artifact Signer's Repositories
securesign/secure-sign-operator
Kubernetes Operator for deploying and managing Sigstore components like Fulcio, Rekor, TSA, and TUF.
securesign/artifact-signer-ansible
Ansible Collection for RHTAS
securesign/trusted-foundations
securesign/fulcio
Sigstore OIDC PKI
securesign/quickstarts
Red Hat Trusted Artifact Signer's quickstarts
securesign/cosign
Container Signing
securesign/gitsign
Keyless Git signing using Sigstore
securesign/rekor
Software Supply Chain Transparency Log
securesign/segment-backup-job
securesign/sigstore-e2e
securesign/timestamp-authority
RFC3161 Timestamp Authority
securesign/trillian
A transparent, highly scalable and cryptographically verifiable data store.
securesign/actions
A Github repo that stores all of securesigns reusable Github actions.
securesign/certificate-transparency-go
Auditing for TLS certificates (Go code)
securesign/demo-resources
OpenShift resources to use when demoing or testing out RHTAS
securesign/fbc
File-based Catalogs
securesign/model-transparency
Supply chain security for ML
securesign/model-validation-operator
Kubernetes controller to validate AI models
securesign/pipelines
Red Hat Trusted Artifact Signer's Konflux Build Pipelines
securesign/policy-controller
Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supply-chain metadata from cosign
securesign/policy-controller-operator
A helm based operator for deploying and managing instances of the sigstore policy controller on kubernetes
securesign/rekor-monitor
Log monitor for Rekor to verify immutability and monitor entries
securesign/rekor-search-ui
Search Rekor for entries
securesign/renovate-config
securesign/rhtas-console
securesign/rhtas-console-ui
A web-based UI for interacting with the Red Hat Trusted Artifact Signer (TAS) ecosystem. It provides user-friendly workflows for retrieving, verifying, and monitoring signed software artifacts, integrating with Sigstore services like Rekor, Fulcio, and TUF.
securesign/scaffolding
Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.
securesign/sigstore-python
A Sigstore client written in Python
securesign/structural-tests
Securesign project structural and acceptance tests
securesign/tough
Rust libraries and tools for using and generating TUF repositories