供应链中台系统基础版,集成零售管理, 电子商务, 供应链管理, 财务管理, 车...
KubeClarity is a tool for detection and management of Software Bill Of M...
🏆Open Source Security Foundation (OpenSSF) Best Practices Badge (former...
A collection of reference Jupyter notebooks and demo AI/ML applications ...
Audits Python environments, requirements files and dependency trees for ...
Software Supply Chain Transparency Log
in-toto is a framework to protect supply chain integrity.
Packj stops :zap: Solarwinds-, ESLint-, and PyTorch-like attacks by flag...
Go implementation of The Update Framework (TUF)
Scans Software Bill of Materials (SBOMs) for security vulnerabilities
Common go library shared across sigstore services and clients
Witness is a pluggable framework for software supply chain risk manageme...
Environments for OR and RL Research
Independent verification of binary packages - reproducible builds
OWASP CycloneDX is a full-stack Bill of Materials (BOM) standard that pr...