|
witness
☆
« Back to VersTracker
|
||||||||||||||||||||
|
Description: Automates, normalizes, and verifies software artifact provenance |
||||||||||||||||||||
| Type: Formula | Latest Version: 0.10.1@0 | Tracked Since: Oct 15, 2025 | ||||||||||||||||||||
| Links: Homepage | formulae.brew.sh | ||||||||||||||||||||
| Category: Security | ||||||||||||||||||||
| Tags: security provenance supply-chain attestation devops | ||||||||||||||||||||
| Install: brew install witness | ||||||||||||||||||||
|
About: Witness is a toolchain for creating and verifying software supply chain attestations using in-toto. It integrates with CI/CD pipelines to wrap build steps, automatically generating provenance metadata. This allows users to verify the origin and integrity of artifacts, ensuring they haven't been tampered with. |
||||||||||||||||||||
Key Features:
|
||||||||||||||||||||
Use Cases:
|
||||||||||||||||||||
Alternatives:
|
||||||||||||||||||||
| Version History | ||||||||||||||||||||
|