The Airgap Native Packager Manager for Kubernetes
Custom Caddy (xcaddy) with HE DNS & CloudFront trusted proxies. Docker/Compose + cosign.
rwalk - dash app random walk
pwrApp - Dash application for mcce
An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster
My collection of the Daggerverse
Hardened multi-arch OCI images for JVM workloads. JDK 25/26/Valhalla on Chainguard, Distroless, and UBI. Non-root, digest-pinned, SBOM-attested, Cosign-signed. Production-ready security-first containers for amd64/arm64.
Projeto final do curso Programa Intensivo em Containers e Kubernetes.
Example goreleaser + github actions config with keyless signing, SBOM generation, and attestations
Remove all the resources from an AWS account
(landing area for upstream contributions and carried patches)
Integrates Spiffe and Vault to have secretless authentication
Kubernetes Validation Admission Controller to verify Cosign signatures
PatchHound is an open source SBOM vulnerability scanner and report generator with image signing, verification, and automated alerts for secure software supply chains.
Kubernetes admission webhook that uses cosign verify to check the subject and issuer of the image matches what you expect
A Sigstore KMS plugin for Alibaba Cloud KMS
Add a description, image, and links to the cosign topic page so that developers can more easily learn about it.
To associate your repository with the cosign topic, visit your repo's landing page and select "manage topics."