Skip to content

@securesign Red Hat Trusted Artifact Signer

Change the repository type filter

All

    Repositories list

    40 repositories

    • rekor

      Public
      Software Supply Chain Transparency Log
      Go
      Apache License 2.0
      187007Updated Nov 2, 2025Nov 2, 2025

    • gitsign

      Public
      Keyless Git signing using Sigstore
      Go
      Apache License 2.0
      72014Updated Nov 2, 2025Nov 2, 2025

    • cosign

      Public
      Container Signing
      Go
      Apache License 2.0
      648024Updated Nov 2, 2025Nov 2, 2025

    • rhtas-console

      Public
      Go
      Apache License 2.0
      2103Updated Nov 2, 2025Nov 2, 2025

    • certificate-transparency-go

      Public
      Auditing for TLS certificates (Go code)
      Go
      Apache License 2.0
      278004Updated Nov 2, 2025Nov 2, 2025

    • secure-sign-operator

      Public
      Kubernetes Operator for deploying and managing Sigstore components like Fulcio, Rekor, TSA, and TUF.
      certificate-transparencyoperatorsigstorerekor
      Go
      Apache License 2.0
      237020Updated Nov 2, 2025Nov 2, 2025

    • rhtas-console-ui

      Public
      A web-based UI for interacting with the Red Hat Trusted Artifact Signer (TAS) ecosystem. It provides user-friendly workflows for retrieving, verifying, and monitoring signed software artifacts, integrating with Sigstore services like Rekor, Fulcio, and TUF.
      software-supply-chainsigstoresoftware-supply-chain-security
      TypeScript
      Apache License 2.0
      40110Updated Nov 1, 2025Nov 1, 2025

    • pipelines

      Public
      Red Hat Trusted Artifact Signer's Konflux Build Pipelines
      Dockerfile
      Apache License 2.0
      3007Updated Nov 1, 2025Nov 1, 2025

    • policy-controller

      Public
      Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supply-chain metadata from cosign
      Go
      Other
      67001Updated Nov 1, 2025Nov 1, 2025

    • rekor-search-ui

      Public
      Search Rekor for entries
      transparency-logrekorsecure-supply-chain
      TypeScript
      Apache License 2.0
      33008Updated Nov 1, 2025Nov 1, 2025

    • trillian

      Public
      A transparent, highly scalable and cryptographically verifiable data store.
      Go
      Apache License 2.0
      4140011Updated Nov 1, 2025Nov 1, 2025

    • artifact-signer-ansible

      Public
      Ansible Collection for RHTAS
      Jinja
      Apache License 2.0
      66011Updated Oct 31, 2025Oct 31, 2025

    • model-validation-operator

      Public
      Kubernetes controller to validate AI models
      Go
      Apache License 2.0
      8003Updated Oct 31, 2025Oct 31, 2025

    • timestamp-authority

      Public
      RFC3161 Timestamp Authority
      Go
      Apache License 2.0
      47005Updated Oct 31, 2025Oct 31, 2025

    • fulcio

      Public
      Sigstore OIDC PKI
      Go
      Apache License 2.0
      160104Updated Oct 31, 2025Oct 31, 2025

    • tough

      Public
      Rust libraries and tools for using and generating TUF repositories
      Rust
      64004Updated Oct 31, 2025Oct 31, 2025

    • rekor-monitor

      Public
      Log monitor for Rekor to verify immutability and monitor entries
      Go
      Apache License 2.0
      33002Updated Oct 31, 2025Oct 31, 2025

    • policy-controller-operator

      Public
      A helm based operator for deploying and managing instances of the sigstore policy controller on kubernetes
      Go
      Apache License 2.0
      0003Updated Oct 31, 2025Oct 31, 2025

    • segment-backup-job

      Public
      Python
      80012Updated Oct 31, 2025Oct 31, 2025

    • fbc

      Public
      File-based Catalogs
      Shell
      Apache License 2.0
      6015Updated Oct 30, 2025Oct 30, 2025

    • model-transparency

      Public
      Supply chain security for ML
      Python
      Apache License 2.0
      50002Updated Oct 29, 2025Oct 29, 2025

    • structural-tests

      Public
      Securesign project structural and acceptance tests
      Go
      Apache License 2.0
      0000Updated Oct 23, 2025Oct 23, 2025

    • trusted-foundations

      Public
      open-sourcesupply-chain-securitysigstore
      MDX
      Apache License 2.0
      0205Updated Oct 20, 2025Oct 20, 2025

    • sigstore-python

      Public
      A Sigstore client written in Python
      Python
      Other
      63000Updated Aug 19, 2025Aug 19, 2025

    • renovate-config

      Public
      0001Updated Jul 22, 2025Jul 22, 2025

    • quickstarts

      Public
      Red Hat Trusted Artifact Signer's quickstarts
      Makefile
      Apache License 2.0
      0200Updated Jul 17, 2025Jul 17, 2025

    • sigstore-e2e

      Public
      Go
      1000Updated Jul 17, 2025Jul 17, 2025

    • actions

      Public
      A Github repo that stores all of securesigns reusable Github actions.
      3000Updated Apr 25, 2025Apr 25, 2025

    • scaffolding

      Public archive
      Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.
      HCL
      Apache License 2.0
      630018Updated Apr 3, 2025Apr 3, 2025

    • demo-resources

      Public
      OpenShift resources to use when demoing or testing out RHTAS
      Apache License 2.0
      0000Updated Apr 1, 2025Apr 1, 2025