-
-
-
[Issue28](https://github.com/oasis-tcs/osim/issues/28) proposes we have a place to start defining terms.
[Issue29](https://github.com/oasis-tcs/osim/issues/29) proposes to define the term "software …
-
### Current Behavior
Currently, Dtrack identifies Out-of-date components by checking for newer versions of components. But it does NOT identify whether a component is Out-of-Support or not.
### Prop…
-
dchain - Decentralized Supply chain
The last century has seen the rise of complex global supply chains. It started with a cross-border trading agreements that eased the coordination of multi-countr…
-
There have been some questions as to what "SLSA for ML" looks like. This issue attempts to give a short synopsis so that we can hopefully agree and turn that into durable documentation.
First, Mach…
-
I have a reproducible fatal error in the hdt interface. For some reason searching with a predicate and object, returns more results than simply searching for the object (in this case), and eventually …
-
**Is your feature request related to a problem? Please describe.**
As a feature to support a more secure software supply chain, Thoth should generate a [SBOM](https://en.wikipedia.org/wiki/Software_b…
goern updated
2 years ago
-
**Description**
The current index page seems out of order. The rearrangement should be:
- Sigstore Definition
- Why Sigstore
- How it works
- And which tools does Sigstore use.
- Contributing
…
-
Hi 👋
I'm Ian, working on behalf of Google and the [Open Source Security Foundation (OpenSSF)](https://openssf.org/) to help open source projects to improve their supply chain security.
After so…