 |
VOOZH | about |
Kernel-enforced agent sandbox. Capability-based isolation with secure key management, atomic rollback, cryptographic immutable audit chain of provenance. Run your agents in a zero-trust environment.
An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster
Enabling Software Supply Chain Security Capabilities in ArgoCD
A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.
The Anti-Virus for AI Artifacts & RAG Firewall. A static analysis tool scanning Models and Notebooks for RCE, Datasets and RAG docs for Data Poisoning, PII, and Prompt Injections. Secure your AI Supply Chain.
PDF signing utility supporting GPG and Sigstore (Google, GitHub, Microsoft accounts / keyless OIDC) signatures, multi-party signing, making it easy to sign and verify documents without heavyweight PDF signing stacks, making your PDFs authentic, tamper-proof, fully compatible with regular readers; all while costing zero-dollars to use.
Example goreleaser + github actions config with keyless signing, SBOM generation, and attestations
๐ด๐ก๐ข The Amazing Multipurpose Policy Engine (and L)
Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
Add a description, image, and links to the sigstore topic page so that developers can more easily learn about it.
To associate your repository with the sigstore topic, visit your repo's landing page and select "manage topics."