• sigstore-python 2.0 https://blog.sigstore.dev/announcing-sigstore-python-20/ 2 comments 29/9/2023
• Sigstore protects Apt archives: apt-verify and apt-sigstore https://blog.josefsson.org/2023/04/15/sigstore-protects-apt-archives-apt-verify-apt-sigstore/ 20 comments 16/4/2023
• Sigstore: Making sure your software is what it claims to be https://www.sigstore.dev/ 45 comments 21/1/2025
• OpenPubKey and Sigstore https://blog.sigstore.dev/openpubkey-and-sigstore/ 28 comments 6/10/2023
• Improving NPM Security with Sigstore https://github.blog/2022-08-08-new-request-for-comments-on-improving-npm-security-with-sigstore-is-now-open/ 2 comments 8/8/2022
• Sigstore the Hard Way https://github.com/lukehinds/sigstore-the-hard-way 2 comments 29/7/2022
• Sigstore - A new standard for signing, verifying and protecting software https://www.sigstore.dev/ 27 comments 3/5/2022
• Don't Panic: A Playbook for Handling Account Compromise with Sigstore https://blog.sigstore.dev/dont-panic-a-playbook-for-handling-account-compromise-with-sigstore-ee299dca5144 3 comments 27/4/2022
• RFC for Sigstore Rubygems Signing https://github.com/rubygems/rfcs/pull/37 2 comments 28/1/2022
• Sigstore – A new standard for signing, verifying and protecting software https://sigstore.dev 79 comments 9/8/2021

• Linux Foundation Announces Free sigstore Signing Service to Confirm Origin and Authenticity of Software https://linuxfoundation.org/en/press-release/linux-foundation-announces-free-sigstore-signing-service-to-confirm-origin-and-authenticity-of-software/ 3 comments 11/3/2021 cryptography , security

• [pre-RFC] Using Sigstore for signing and verifying crates https://internals.rust-lang.org/t/pre-rfc-using-sigstore-for-signing-and-verifying-crates/18115 49 comments 10/1/2023 rust
• "We sign code now" (Sigstore) https://blog.trailofbits.com/2022/11/08/sigstore-code-signing-verification-software-supply-chain/ 12 comments 8/11/2022 crypto
• Keyless Git signing with Sigstore! https://github.com/sigstore/gitsign 3 comments 24/6/2022 kubernetes
• Kubernetes signals massive adoption of Sigstore for protecting open source ecosystem https://blog.sigstore.dev/kubernetes-signals-massive-adoption-of-sigstore-for-protecting-open-source-ecosystem-73a6757da73 11 comments 3/5/2022 kubernetes
• Project sigstore (free software signing service) just released a library to sign and verify python packages https://github.com/sigstore/sigstore-python 7 comments 28/4/2022 python
• Signing containers in AWS Codepipeline and Build using Sigstore's Cosign. https://chainguard.dev/posts/2022-01-07-cosign-aws-codepipeline 4 comments 7/1/2022 aws
• A Deep Dive into Fulcio - Sigstore's Root CA https://chainguard.dev/posts/2021-11-12-fulcio-deep-dive 6 comments 14/11/2021 kubernetes
• Sigstore: A Solution to Software Supply Chain Security https://medium.com/@martin.heinz/sigstore-a-solution-to-software-supply-chain-security-35bc96bddad5?amp%3Bsk=261fefbee4ddd4b7a267bfbda4a05b1e&source=friends_link 4 comments 19/8/2021 programming
• Sigstore: A New Tool Wants to Save Open Source From Supply Chain Attacks https://www.linux.com/news/sigstore-a-new-tool-wants-to-save-open-source-from-supply-chain-attacks-wired/ 8 comments 6/7/2021 linux
• Sigstore: A New Kind of Trust Root https://link.medium.com/xbdmjt46ugb 4 comments 8/6/2021 programming
• Introducing sigstore: software signing for the masses https://next.redhat.com/2021/03/09/introducing-sigstore-software-signing-for-the-masses/ 18 comments 10/3/2021 linux
• Introducing sigstore: software signing for the masses https://next.redhat.com/2021/03/09/introducing-sigstore-software-signing-for-the-masses/ 5 comments 9/3/2021 programming