Tag: Sigstore

checkmarx, supply chain, supply, risk, supply chain, API management Red Hat supply chain

Red Hat Moves to Secure Software Supply Chains

Mike Vizard | May 23, 2023 | red hat, Red Hat Summit, Sigstore, Software Supply Chain

Red Hat today announced a portfolio of cloud services designed to better secure software supply chains. The expanded portfolio includes Red Hat Trusted Application Pipeline to secure continuous integration/continuous delivery (CI/CD) workflows ...

Chainguard Adds Private Edition of Code Signing Platform

Mike Vizard | December 8, 2022 | Chainguard, code signing, SBoM, Sigstore, software quality

Chainguard today added a private preview of a Chainguard Enforce Signing service, enabled by the open source Sigstore project, that allows developers to generate digital signatures for software artifacts using identities and ...

privacy risk Sigstore GraphQL security Checkmarx Sonatype WhiteSource the secure software development

Sigstore Code Signing Service Becomes Generally Available

Mike Vizard | October 27, 2022 | code signing, open source security, OpenSSF, Sigstore

A free digital signing service for software created by the Sigstore open source community has become generally available this week via the cloud. Announced at the SigstoreCon event that occurred during the ...

Checkmarx software security Google GitHub DevSecOps

Google Allies With GitHub to Secure Software Supply Chains

Mike Vizard | April 7, 2022 | code security, github, google, Sigstore, source code signing, supply chain

Google today revealed it has been working with GitHub to create a forgery-proof method for signing source code as part of an ongoing effort to better secure software supply chains. Bob Callaway, ...