Powered by sigstore

Thank you OpenUK for the beautiful glass engraved award accepted on behalf of sigstore and controlplane for sponsoring the security category ❤️

📣 Join us for SigstoreCon: Supply Chain Day! 📍Attendees will learn about simplifying signing & verification for digital artifacts using Sigstore, as well as related software supply chain efforts such as SLSA, and more! Learn more: openssf.org/blog/2024/08/1… #OSSSecurity

Join us for SigstoreCon: Supply Chain Day! Co-located with Kubecon NA 2024 in Salt Lake City. CFP now open events.linuxfoundation.org/sigstorecon-su…

TSC Member Bob Callaway and community chair Hayden from the Google OS Sec Team chatted with puerco on the Stacklok hosted 🌮 Securi-Taco Tuesdays 📺show. Lot's on sigstore and & software supply chain security. Catch it here: youtube.com/watch?v=JwfTCe…

On our last Securi-Taco Tuesday puerco welcomed Bob Callaway & Hayden from Google's Open Source Security Team (GOSST) on to chat about how code signing and sigstore secure the software supply chain. Read the recap & watch the replay here: stacklok.com/blog/securi-ta…

⏰ Reminder folks, the CFP deadline is Sept 13, please submit your talks before then! events.linuxfoundation.org/sigstorecon-su…

Reminder, the CFP for SigstoreCon closes on this Friday, September 13, 2024 at 11:59 pm Mountain Daylight Time (UTC-6) / 10:59 pm Pacific Daylight Time events.linuxfoundation.org/sigstorecon-su…

The CFP deadline for SigstoreCon has been extended to Wednesday, September 18, 2024 at 11:59 pm Mountain Daylight Time (UTC-6). events.linuxfoundation.org/sigstorecon-su…

⏰ Reminder that the CFP for SigstoreCon closes tomorrow, September 18! events.linuxfoundation.org/sigstorecon-su…

Announcing the schedule for SigstoreCon: Supply Chain Day! We're looking forward to talks on Sigstore development, package registry security, SBOMs, TUF, and more! Register now for Nov 12, co-located with Kubecon NA in Salt Lake City events.linuxfoundation.org/sigstorecon-su…

Join us at SigstoreCon: Supply Chain Day on Nov 12, co-located with KubeCon NA in SLC! Registration includes a day of engaging talks, lunch, and swag! events.linuxfoundation.org/sigstorecon-su…

🚨 SigstoreCon: Supply Chain Day is almost here! Register now to join us on Nov 12 in Salt Lake City for a day of talks about Sigstore, SLSA, SBOMs, and more! events.linuxfoundation.org/sigstorecon-su…

Huge thanks to Google Open Source for being a Platinum Sponsor of SigstoreCon! Their support for open source and supply chain security continues to drive the industry forward. 💪 #SigstoreCon #SupplyChainSecurity events.linuxfoundation.org/sigstorecon-su…

✨ Grateful for @StacklokHQ as a Gold Sponsor of #SigstoreCon! With their support, we’re pushing the boundaries of open source and supply chain security together. Join us today: events.linuxfoundation.org/sigstorecon-su… #SupplyChainSecurity

🏅 With the support of Chainguard ⛓️ as a Gold Sponsor, #SigstoreCon is building a stronger foundation for secure software supply chains. 🙏 Thank you, Chainguard! Join us today: events.linuxfoundation.org/sigstorecon-su… #SupplyChainSecurity

Wow Python Package Index now supports sigstore 💪🏻 blog.pypi.org/posts/2024-11-…

sigstore signatures are now validated and distributed by Maven Central! sonatype.com/blog/central-p…

📣 Announcing v1.0 of the model-signing project, developed by the #OpenSSF AI/ML WG! This project enables signing + verifying ML models of any size/format using #sigstore, self-signed certs, or key pairs. Read the blog to learn more & get involved: openssf.org/blog/2025/04/0…

Cosign is a useful tool when signing containers by sigstore / OpenSSF / The Linux Foundation - now it's really easy to install on Windows, macOS and Linux with pixi :)