Sigstore Python Packages

sigstore-models

Pydantic-based, protobuf-free data models for Sigstore

177K 5 4

model-signing

Supply chain security for ML

8K 230 59

trustcheck

Verify PyPI package attestations and improve Python supply-chain security

5K 54 1

securescan

Security scanning without the SaaS tax. Multi-scanner orchestration, baseline diffing, SBOM + SARIF, signed everything — runs in your terminal, your CI, or a dashboard you own.

3K 0 0

arkforge-mcp

Third-party cryptographic proof for AI agent API calls — ArkForge Trust Layer MCP server

3K 1 0

veritensor

Antivirus for the AI Supply Chain. Scans models, datasets, notebooks, and RAG documents for threats.

2K 73 5

squash-ai

🛡️ Automated EU AI Act compliance for AI/ML teams — Annex IV docs, SBOMs, policy checks, and signed audit records inside your CI/CD pipeline. August 2, 2026 enforcement deadline. ⏰

1K 1 0

mcpkernel

Open-source MCP/A2A security gateway — policy enforcement, taint tracking, sandboxed execution, deterministic envelopes, and Sigstore audit for every AI agent tool call. OWASP ASI 2026 compliant.

527 0 0

h4-hello

A practice project for publishing Python projects created with uv to PyPI with PEP740 signatures.

361 0 0

whiteprints

A Copier-based cookiecutter for creating Python projects managed by uv.

344 4 2

Search Packages