🔍 ScanCode detects licenses, copyrights, dependencies by "scanning code" ... to discover and inventory open source and third-party packages used in your code. Sponsored by NLnet project https://nl...
The official repository for the AiiDA code
An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster
Effortless method to record provenance in Python
Blue Brain Nexus - A knowledge graph for data-driven science
Log shell-commands and used files. Snapshot executed scripts. Fully automatic.
Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko generative SBOM, cosign attestation, and SLSA build provenance
VisTrails is an open-source data analysis and visualization tool. It provides a comprehensive provenance infrastructure that maintains detailed history information about the steps followed and data de...
Java toolkit to create and convert W3C PROV data model representations, and build provenance-enabled applications in a variety of programming languages (java, python, typescript, javascript)
A highly configurable build executor and observer designed to generate signed SLSA provenance attestations about build runs.
A set of documents addressing the structure of and supporting services for xAPI Profiles.
Ontology for representing scientific evidence and provenance information
Github Action implementation of SLSA Provenance Generation
Persist is a JupyterLab extension to enable persistent interactive visualizations in JupyterLab notebooks.
Container image provenance spec that allows tracing CVEs detected in registry images back to a CVE's source of origin.
ZK proofs for image authenticity