Supplychainpy is a Python library for supply chain analysis, modelling a...
Easy auditing & sandboxing for your JavaScript dependencies 🪱
A curated list of awesome supply chain blogs, podcasts, standards, proje...
Official GitHub Action for OpenSSF Scorecard.
A Sigstore client for Python
A blockchain-based Product Ownership Management System for anti-counterf...
Codenotary Community Attestation Service (CAS) for notarization and auth...
OriginTrail Decentralized Knowledge Graph network node
一名项目兼产品管理老鸟的心得体会
FOSSLight Hub : Integrated management web-service for Open Source Compli...
Trusted Computing based services supporting TPM provisioning and supply ...
Cross tooling and interoperability specifications
A practical experiment on supply-chain security using reproducible builds
Code-signing for npm packages
Software Component Verification Standard (SCVS)