sns45/forgeseal is a supply chain security command-line interface for JavaScript and TypeScript that generates CycloneDX Software Bill of Materials (SBOMs), signs them using Sigstore keyless signing, produces SLSA v1 provenance attestations, and triages vulnerabilities using OSV.dev.

Authors

• Person: Not available Organization: GitHub
  bureado/awesome-software-supply-chain-security - GitHub

Sources

• bureado/awesome-software-supply-chain-security - GitHub github.com GitHub via serper

Referenced by nodes (3)

• supply chain security concept
• JavaScript concept
• Sigstore concept