A python application to add hashes to your requirements.txt
-
Updated
Dec 23, 2022 - Python
A python application to add hashes to your requirements.txt
GitHub Action to install phylum CLI tool
Materials for the talk "How to automate dependency updates with the Roche Renovate bot"
Check CVSS v3.1 and EPSS scores for a given CVE ID and whether its in CISA KEV catalog
GitHub Action to analyze Pull Requests for open-source supply chain issues
Developed a system that keeps track of the product quality and other factors throughout the supply chain by using Blockchain technology
Utility to test reproducibility of crates from Cargo.lock
Aggregate view of all dependabot findings
The open source platform for AI-native application development for OR applications.
🛠️📊🤖 Fake GitHub Activity Generator
A Carvel package providing Cartographer supply chains to build golden paths to production for applications and functions, from source code to deployment in a Kubernetes cluster.
Bitbucket pipe to generate a CycloneDX sBOM for Java, Go, Python & Node projects
A Carvel package providing a set of reusable blueprints to build Kubernetes-native paved paths to production using Cartographer.
Comparing crates.io contents with the corresponding Git repositories to check for supply chain attacks.
Sample Go application project with supply chain security workflows conforms to the SLSA Build Level 3 specification
"Supply Chain Attack 케이스 스터디 및 대응 방안에 관한 고찰", 제 3회 대충콘 세미나 발표 자료
Blockchain simulation demonstrating an idea for improving the cybersecurity of a supply chain.
A paper on supply chain security in software development for Uni.
Kubernetes operator for the OSS Review Toolkit
A simple CircleCI orb used to install Cosign and sign container images
Add a description, image, and links to the supply-chain-security topic page so that developers can more easily learn about it.
To associate your repository with the supply-chain-security topic, visit your repo's landing page and select "manage topics."