in-toto framework generates metadata files that are represented as signature wrapper or envelope. in-toto current signature wrapper requires...
Normalize TiKV Java client for TiSpark
ZiJian Ren
TiSpark maintains a com.pingcap.tikv/tikv-client module. It is a fork of the current official tikv-client legacy version. The difference from the...
Implement WASI and wasmedge_process host functions on Windows
Abhinandan Udupa
WebAssembly has become extremely popular among the developer community lately. It offers near native performance in a browser and is meant to not be...
RPC cross different namespaces through unix socket
shouxunsun
The chaos-daemon component of Chaos Mesh manages many subprocesses to inject faults into other containers(Linux namespaces), and we need to...
Standardize Cache Flag options for pack CLI
Nitish Gupta
Introduce a new variadic flag to the Pack CLI that enables configuring different cache types geared towards app developers or operators that are...
A Grafana Dashboard Plugin to Observe Controller Metrics
Tianyi(Tony)
This project aims to provide unified Grafana dashboards to visualize K8s controller/operator status based on Kubebuilder. In general, users have to...
Add SLSA provenance support to in-toto-rs and rebuilderd
Lenery Chen
Rebuilderd is a verification system for binary packages. It repeates the build process of a package in an identical environment and verifies that the...
New Golang plugin to help Operator authors skill up
Nikhil Sharma
This proposal defines a new plugin that allows users to get the scaffold with the required code to have a project that will deploy and manage an...
Single binary deployment outside kubernetes environment.
Basit Hasan
Chaos Mesh supports injecting errors into the physical machine through PhysicalMachineChaos. However, deploying it outside the Kubernetes cluster is...
Tooling to deploy and cross-configure cert-manager with external dependencies by Terraform
Zhe Cheng
Design and create Terraform modules framework that is benefit to extension and reusability to easily install and configure cert-manager, associated...
KubeArmor Observability and Policy Discovery Helper Tool
Nathaniel Jason
Running Kubernetes should be done with the utmost security in mind. KubeArmor provides a policy based system to increase the quality of security in a...
CNCF Cluster: Performance Benchmarking
Aaditya Narayan Subedy
The Service Mesh Performance standard captures and characterizes infrastructure capacity, service mesh configuration, and workload metadata. When we...
CoreDNS: Add ACME protocol support for certificate management into TLS plugin
Marius Kimmina
When using CoreDNS to serve DNS traffic over TLS/HTTPS certificates have to be managed (created and renewed) manually. The goal of my project is to...
Implementing TAP(TUF Augmentation Proposal) 14 for python’s reference implementation
Abhisman Sarkar
Implementing version management for TUF’s python reference implementation. The implementation does not currently have a way to migrate TUF...
in-toto: Add provenance extension to Jenkins plugin
Lakshya Gupta
In-toto is a framework designed to protect software supply chain integrity. It provides security against attackers who can get control of a step in...
Expand Service Mesh Patterns catalog
Yash Kamboj
Create a centralized catalog of Patterns, WebAssembly filters and eBPF programs which let's the user import, edit and deploy patterns.The Service...