Tag: opensource

• Cosign 2.0 Released!
• Security by Default: How Verizon New Business Incubation Uses Sigstore to Demonstrate Provenance and Improve Customer Confidence
• How Sigstore quickly patched an upstream vulnerability
• Adopting Sigstore Incrementally
• Sigstore: Bring-your-own sTUF with TUF
• It’s ten o’clock, do you know where your private keys are?
• The Update Framework and You
• SSH is the new GPG