パッケージ: gittuf (0.12.0-2)
security layer for Git repositories (program)
gittuf is a security layer for Git repositories. With gittuf, any developer who can pull from a Git repository can independently verify that the repository's security policies were followed. gittuf's policy, inspired by The Update Framework (TUF) (https://theupdateframework.io/), handles key management for all trusted developers in a repository, allows for setting permissions for repository branches, tags, files, etc., protects against other attacks (https://ssl.engineering.nyu.edu/papers/torres_toto_usenixsec-2016.pdf) Git is vulnerable to, and more — all while being backwards compatible with forges such as GitHub and GitLab.
gittuf is currently in alpha. gittuf's metadata may have breaking changes, meaning a repository's gittuf policy may have to be reinitialized from time to time. As such, gittuf is currently not intended to be the primary mechanism for enforcing a repository's security.
That said, we're actively seeking feedback from users. Take a look at the get started guide (/docs/get-started.md) to learn how to install and try gittuf out!
This package contains the command-line gittuf tool.
その他の gittuf 関連パッケージ
|
|
|
|
-
- dep: libc6 (>= 2.34) [loong64 以外]
- GNU C ライブラリ: 共有ライブラリ
以下のパッケージによって提供される仮想パッケージでもあります: libc6-udeb
- dep: libc6 (>= 2.42) [loong64]
gittuf のダウンロード
| アーキテクチャ | パッケージサイズ | インストールサイズ | ファイル |
|---|---|---|---|
| amd64 | 17,820.0 kB | 74,880.0 kB | [ファイル一覧] |
| arm64 | 15,082.0 kB | 69,504.0 kB | [ファイル一覧] |
| armhf | 15,529.9 kB | 69,412.0 kB | [ファイル一覧] |
| i386 | 16,429.4 kB | 69,869.0 kB | [ファイル一覧] |
| loong64 | 15,676.4 kB | 75,198.0 kB | [ファイル一覧] |
| ppc64el | 14,903.5 kB | 73,535.0 kB | [ファイル一覧] |
| riscv64 | 16,583.2 kB | 68,800.0 kB | [ファイル一覧] |
| s390x | 16,098.4 kB | 75,584.0 kB | [ファイル一覧] |