Hackernews posts about Sigstore
- Rekor – immutable tamper resistant metadata ledger (github.com)
- The last Romans are still around (signoregalilei.com)
- Why New Zealand is on a map of the USA (signoregalilei.com)
- The failed plan to centralize the nukes (signoregalilei.com)
- Germany and France Scrapped the FCAS (www.reuters.com)
- Sigstore: Making sure your software is what it claims to be (www.sigstore.dev)
- Sigstore is an open source project for improving software supply chain security (docs.sigstore.dev)
- Building Cryptographic Agility into Sigstore (blog.trailofbits.com)
- Maven Central Adds Sigstore Signature Validation (socket.dev)
- Building Cryptographic Agility into Sigstore (blog.trailofbits.com)
- Gitsign: Keyless Git signing using Sigstore (github.com)
- Sigstore is an open source project for improving software supply chain security (docs.sigstore.dev)
- MetaGenesis Core – offline verification for computational claims (www.metagenesis-core.dev)
- Show HN: Enact – A package manager for AI agent tools (enact.tools)
- Show HN: SafeInstall – local install-time guardrails for NPM/pnpm/bun (www.safeinstall.dev)
- Show HN: Signed lockfiles for MCP servers (MCPTrust) (github.com)
- An Introduction to Fulcio (edu.chainguard.dev)
- Tides are weirder than you think (signoregalilei.com)
- The mountain that weighed the Earth (signoregalilei.com)