Go supply-chain-security

Open-source Go projects categorized as supply-chain-security
Edit details
Topics: Security security-tools Devsecops Golang sbom
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com
featured

Top 7 Go supply-chain-security Projects

  • legitify

    Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets

    • Project mention: GitHub - Legit-Labs/legitify: Detect and remediate misconfigurations and security risks across all your GitHub GitLab assets. Version 1.0 is out, check out the new enterprise-level policies. | /r/netsec | 2023-08-04

  • chainloop

    Chainloop is an Open Source evidence store for your Software Supply Chain attestations, SBOMs, VEX, SARIF, CSAF files, QA reports, and more.

    • Project mention: Choosing the “old stuff” as plugin SDK for Go in 2023 | news.ycombinator.com | 2023-07-06

  • InfluxDB

    Power Real-Time Data Analytics at Scale. Get real-time insights from all types of time series data with InfluxDB. Ingest, query, and analyze billions of data points in real-time with unbounded cardinality.

    InfluxDB logo

  • secure-repo

    Orchestrate GitHub Actions Security

  • sbom-operator

    Catalogue all images of a Kubernetes cluster to multiple targets with Syft

  • vet

    Tool to achieve policy driven vetting of open source dependencies

    • Project mention: Show HN: Vet now supports detecting malicious packages | news.ycombinator.com | 2023-12-31

  • SBOM Quality Score

    SBOM quality score - Quality metrics for your sboms

  • solarsploit

    Red team tool that emulates the SolarWinds CI compromise attack vector.

  • SaaSHub

    SaaSHub - Software Alternatives and Reviews. SaaSHub helps you find the best software and product alternatives

    SaaSHub logo
NOTE: The open source projects on this list are ordered by number of github stars. The number of mentions indicates repo mentiontions in the last 12 Months or since we started tracking (Dec 2020).

Go supply-chain-security related posts

  • Show HN: Vet now supports detecting malicious packages

    1 project | news.ycombinator.com | 31 Dec 2023

  • 10 reasons you should quit your HTTP client

    5 projects | dev.to | 15 Nov 2023

  • Gittuf – a security layer for Git using some concepts introduced by TUF

    5 projects | news.ycombinator.com | 24 Oct 2023

  • GitHub - Legit-Labs/legitify: Detect and remediate misconfigurations and security risks across all your GitHub GitLab assets. Version 1.0 is out, check out the new enterprise-level policies.

    1 project | /r/netsec | 4 Aug 2023

  • Legitify: Detect and remediate misconfigurations, security and compliance issues across all your GitHub and GitLab assets with ease

    1 project | /r/DevOpsLinks | 17 Jun 2023

  • Legitify added support for GPT-based security recommendations for GitHub & GitLab assets

    1 project | /r/netsec | 20 Feb 2023

  • Legitify added support for GPT-based security recommendations for GitHub & GitLab assets

    1 project | /r/github | 20 Feb 2023
  • A note from our sponsor - SaaSHub
    www.saashub.com | 24 May 2024
    SaaSHub helps you find the best software and product alternatives Learn more →

Index

What are some of the best open-source supply-chain-security projects in Go? This list will help you:

Project Stars
1 legitify 715
2 chainloop 315
3 secure-repo 239
4 sbom-operator 181
5 vet 181
6 SBOM Quality Score 137
7 solarsploit 22

Sponsored
SaaSHub - Software Alternatives and Reviews
SaaSHub helps you find the best software and product alternatives
www.saashub.com