appvm
slsa-github-generator
appvm | slsa-github-generator | |
---|---|---|
2 | 3 | |
238 | 372 | |
- | 3.8% | |
0.0 | 9.0 | |
almost 2 years ago | about 17 hours ago | |
Go | Go | |
GNU General Public License v3.0 only | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
appvm
-
Combining NixOS with Qubes/Tails
Have you considered this https://github.com/jollheef/appvm?
-
If a linux/unix was rewritten today, what would be different?
Isolation through virtual machines. Qubes OS is the prime example, also I like appvm a lot.
slsa-github-generator
- SLSA up to v1.9.0 (latest) breaking GHA pipelines
-
UEFI Software Bill of Materials Proposal
https://github.com/slsa-framework/slsa-github-generator#gene... :
> Supply chain Levels for Software Artifacts, or SLSA (salsa), is a security framework, a check-list of standards and controls to prevent tampering, improve integrity, and secure packages and infrastructure in your projects, businesses or enterprises.
> SLSA defines an incrementally-adoptable set of levels which are defined in terms of increasing compliance and assurance. SLSA levels are like a common language to talk about how secure software, supply chains and their component parts really are.
- slsa-github-generator: Language-agnostic SLSA provenance generation for Github Actions
What are some alternatives?
redox - Mirror of https://gitlab.redox-os.org/redox-os/redox
Open-Source-Security-Guide - Open Source Security Guide. Learn all about Security Standards (FIPS, CIS, FedRAMP, FISMA, etc.), Frameworks, Threat Models, Encryption, and Benchmarks.
wondershaper - Command-line utility for limiting an adapter's bandwidth
slsa-provenance-action - Github Action implementation of SLSA Provenance Generation
miniguest - [UNMAINTAINED] lightweight NixOS images
trivy - Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more