sigstore
@projectsigstore
Followers
4K
Following
944
Media
56
Statuses
1K
sigstore is a non-profit , public good software signing service funded under the OpenSSF. https://t.co/HYGAJ06Z11 [email protected]
Joined March 2021
Cosign is a useful tool when signing containers by @projectsigstore / @openssf / @linuxfoundation - now it's really easy to install on Windows, macOS and Linux with pixi :)
Interested in Software Supply Chain Security? We are! That's why we helped to get `cosign` on conda-forge: `cosign` can be used to sign container images or other artifacts with `sigstore`, and you can now easily install it with `pixi global install cosign` 🎉
0
2
8
📣 Announcing v1.0 of the model-signing project, developed by the #OpenSSF AI/ML WG! This project enables signing + verifying ML models of any size/format using #sigstore, self-signed certs, or key pairs. Read the blog to learn more & get involved: https://t.co/TRfwJI3lc7
0
4
13
@projectsigstore signatures are now validated and distributed by Maven Central!
sonatype.com
Central Publisher Portal now validates Sigstore signatures, strengthening software supply chain security.
0
3
7
🏅 With the support of @chainguard_dev as a Gold Sponsor, #SigstoreCon is building a stronger foundation for secure software supply chains. 🙏 Thank you, Chainguard! Join us today: https://t.co/xY4vBUVoJc
#SupplyChainSecurity
events.linuxfoundation.org
Join us for SigstoreCon! Attendees will learn about Sigstore, simplifying signing & verification for digital artifacts, software supply chain efforts & more!
1
3
10
✨ Grateful for @StacklokHQ as a Gold Sponsor of #SigstoreCon! With their support, we’re pushing the boundaries of open source and supply chain security together. Join us today: https://t.co/xY4vBUVWyK
#SupplyChainSecurity
1
1
3
Huge thanks to @GoogleOSS for being a Platinum Sponsor of SigstoreCon! Their support for open source and supply chain security continues to drive the industry forward. 💪 #SigstoreCon #SupplyChainSecurity
https://t.co/xY4vBUVoJc
0
4
5
🚨 SigstoreCon: Supply Chain Day is almost here! Register now to join us on Nov 12 in Salt Lake City for a day of talks about Sigstore, SLSA, SBOMs, and more!
events.linuxfoundation.org
Register Now! The registration deadline is 12:59pm Mountain Standard Time on the respective date. Quick Note: We never sell attendee lists or contact information, nor do we authorize others to do so.
0
1
5
Join us at SigstoreCon: Supply Chain Day on Nov 12, co-located with KubeCon NA in SLC! Registration includes a day of engaging talks, lunch, and swag!
events.linuxfoundation.org
Register Now! The registration deadline is 12:59pm Mountain Standard Time on the respective date. Quick Note: We never sell attendee lists or contact information, nor do we authorize others to do so.
0
5
7
Announcing the schedule for SigstoreCon: Supply Chain Day! We're looking forward to talks on Sigstore development, package registry security, SBOMs, TUF, and more! Register now for Nov 12, co-located with Kubecon NA in Salt Lake City https://t.co/CTK8qqyYSN
events.linuxfoundation.org
All session times are listed below in Mountain Standard Time (MST), UTC-7. To view the schedule in your preferred timezone, please select from the drop-down located at the bottom of the menu to the…
0
6
14
⏰ Reminder that the CFP for SigstoreCon closes tomorrow, September 18! https://t.co/7L5h9XYh3W
events.linuxfoundation.org
SigstoreCon is a one-day conference dedicated to Sigstore and software supply chain security. SigstoreCon will be a vendor-neutral conference dedicated to collaboration and learning about not only…
0
4
7
The CFP deadline for SigstoreCon has been extended to Wednesday, September 18, 2024 at 11:59 pm Mountain Daylight Time (UTC-6). https://t.co/7L5h9XYh3W
events.linuxfoundation.org
SigstoreCon is a one-day conference dedicated to Sigstore and software supply chain security. SigstoreCon will be a vendor-neutral conference dedicated to collaboration and learning about not only…
0
5
6
Reminder, the CFP for SigstoreCon closes on this Friday, September 13, 2024 at 11:59 pm Mountain Daylight Time (UTC-6) / 10:59 pm Pacific Daylight Time
events.linuxfoundation.org
SigstoreCon is a one-day conference dedicated to Sigstore and software supply chain security. SigstoreCon will be a vendor-neutral conference dedicated to collaboration and learning about not only…
0
0
2
⏰ Reminder folks, the CFP deadline is Sept 13, please submit your talks before then!
events.linuxfoundation.org
SigstoreCon is a one-day conference dedicated to Sigstore and software supply chain security. SigstoreCon will be a vendor-neutral conference dedicated to collaboration and learning about not only…
0
3
5
On our last Securi-Taco Tuesday @puerco welcomed @rdcallaw & @haydentherapper from @Google's Open Source Security Team (GOSST) on to chat about how code signing and @projectsigstore secure the software supply chain. Read the recap & watch the replay here: https://t.co/gMI7Nzf6am
stacklok.com
0
7
9
TSC Member @rdcallaw and community chair @haydentherapper from the Google OS Sec Team chatted with @puerco on the @StackLokHQ hosted 🌮 Securi-Taco Tuesdays 📺show. Lot's on sigstore and & software supply chain security. Catch it here:
0
2
5
📣 Join us for SigstoreCon: Supply Chain Day! 📍Attendees will learn about simplifying signing & verification for digital artifacts using Sigstore, as well as related software supply chain efforts such as SLSA, and more! Learn more: https://t.co/3clb3fY68d
#OSSSecurity
1
8
14
Join us for SigstoreCon: Supply Chain Day! Co-located with Kubecon NA 2024 in Salt Lake City. CFP now open
events.linuxfoundation.org
Join us for SigstoreCon! Attendees will learn about Sigstore, simplifying signing & verification for digital artifacts, software supply chain efforts & more!
0
8
15
Powered by @projectsigstore
Secure your cloud-native supply chain with #GitHub Artifact Attestations. Confirm your builds are actually what you want to build! P.S. You can also achieve SLSA v1 Build Level 3 https://t.co/LjARv9drG3
#cloudnative #supplychain #developer #secured
1
1
3
Thank you @openuk_uk for the beautiful glass engraved award accepted on behalf of @projectsigstore and @controlplaneio for sponsoring the security category ❤️
3
5
22