-
## Idea
**Decentralized Self Sovereign Isomorphic Trust Graphs**
What if all our decentralized apps and platforms could share trust/ratings/attestation information, in the form of portable crypt…
-
The UNTP has a requirement to make data meaningful to international parties across industries. To do this, we need to add semantic meaning to this data which can be commonly understood (minimize ambig…
-
The AS as an agent of the Resource Subject where there are the strongest possible constraints (technical if possible) on anyone but them (or the Grantor) seeing their policies and the RS cannot know w…
-
with #5 and publications of
Poelen, Jorrit. (2023). Global Biodiversity Informatics Facility (GBIF): an exhaustive list of gbif record ids, dataset keys, and their associated Occurrence IDs, Insti…
-
Hey there,
Thanks a lot for putting this work together! I came across that much needed starting point in the discussion around optimising compute for GHG emissions listening to [GreenIO's podcast](…
-
[Section 6.2 of the Solid-OIDC spec](https://solid.github.io/solid-oidc/#tokens-id) reads:
> The user’s [singular] WebID MUST be present in the ID Token as the `webid` claim.
While this sentence…
-
**Description**
Cosign is generating tlog entries with an entry type that isn't supported by Rekor.
Create blob attestation like so:
```
cosign attest-blob file-to-attest \
--new-bundle-fo…
-
**Issue:** Browsers have the potential to verify the security of a website using certification processes such as SSL and this is verified within the address bar with a high user-experience recognition…
-
One of the missing "tool types" (in existing SBOM tooling classification efforts) is dependency graphing tools.
These are tools which can create an independent dependency graph (across artifact typ…
-
### What would you like to be added?
[in-toto](https://github.com/in-toto/in-toto) provides a framework to protect the integrity of the software supply chain. It has an [Attestation](https://github.c…