Join us

ContentUpdates and recent posts about Sigstore..
Discovery IconThat's all about @Sigstore โ€” explore more posts below...
ย Activity
pluto_native
@pluto_native started using tool Terraform , 1ย hour, 4ย minutes ago.
ย Activity
pluto_native
@pluto_native started using tool Kubernetes , 1ย hour, 4ย minutes ago.
ย Activity
pluto_native
@pluto_native started using tool Google Cloud Platform , 1ย hour, 4ย minutes ago.
ย Activity
pluto_native
@pluto_native started using tool Amazon Web Services , 1ย hour, 4ย minutes ago.
Link
eon01
@eon01 shared a link, 5ย hours ago
Founder, FAUN.dev

A curated list of free AI models, APIs, and tools you can use without paying a cent.

Running AI shouldn't require a credit card. This list curates genuinely free models โ€” open-weight models you can self-host, free API tiers from major providers, and tools to run everything locally.

A curated list of free AI models, APIs, and tools you can use without paying a cent.
Share: Twitter

|

Linkedin

|

Facebook

|

Pocket

|

Reddit

|

Hacker News

|

Email
ย Activity
eon01
@eon01 added a new tool Unsloth , 10ย hours, 29ย minutes ago.
Course
eon01
@eon01 published a course, 11ย hours ago
Founder, FAUN.dev

Local AI Engineering with Ollama

#LangCha...ย  #Unslothย  #Fine-tu...ย  #Ollamaย  #MCPย 
Docker Redis LangChain Ollama Unsloth

Run, understand, customize, fine-tune, and build agentic apps on your own hardware

Local AI Engineering with Ollama
Share: Twitter

|

Linkedin

|

Facebook

|

Pocket

|

Reddit

|

Hacker News

|

Email

|

Sell your course on FAUN.dev
Story
laura_garcia
@laura_garcia shared a post, 14ย hours ago
Software Developer, RELIANOID

EU Investment in Cybersecurity: Time for investing in Secure Solutions

๐Ÿšจ โ‚ฌ๐Ÿญ.๐Ÿฏ ๐—•๐—œ๐—Ÿ๐—Ÿ๐—œ๐—ข๐—ก. That's how much the ๐—˜๐—จ is investing in ๐—”๐—œ, ๐—ฐ๐˜†๐—ฏ๐—ฒ๐—ฟ๐˜€๐—ฒ๐—ฐ๐˜‚๐—ฟ๐—ถ๐˜๐˜†, ๐—ฎ๐—ป๐—ฑ ๐—ฑ๐—ถ๐—ด๐—ถ๐˜๐—ฎ๐—น ๐˜€๐—ธ๐—ถ๐—น๐—น๐˜€. But here's the real question: ๐Ÿ‘‰ ๐™„๐™จ ๐™ฎ๐™ค๐™ช๐™ง ๐™ž๐™ฃ๐™›๐™ง๐™–๐™จ๐™ฉ๐™ง๐™ช๐™˜๐™ฉ๐™ช๐™ง๐™š ๐™ง๐™š๐™–๐™™๐™ฎ ๐™›๐™ค๐™ง ๐™ฌ๐™๐™–๐™ฉ'๐™จ ๐™˜๐™ค๐™ข๐™ž๐™ฃ๐™œ ๐™ฃ๐™š๐™ญ๐™ฉ? The European Commission has just sent a powerful message to organizations across Europe: cybersecurity is no longer optio..

Share: Twitter

|

Linkedin

|

Facebook

|

Pocket

|

Reddit

|

Hacker News

|

Email
Story
nextgensoft
@nextgensoft shared a post, 1ย day ago
Marketing Manager, nextgensoft

Why Businesses Are Moving from Generative AI to Agentic AI Systems?

Businesses are shifting from Generative AI to Agentic AI systems because modern enterprises need more than content generation; they need AI that can think, plan, make decisions, and execute tasks autonomously. Agentic AI enables smarter workflow automation, faster decision-making, reduced manual effort, and improved operational efficiency across industries. As businesses focus on scalability and intelligent automation, Agentic AI is emerging as the next evolution of enterprise AI solutions.

01- Agentic AI Systems
Share: Twitter

|

Linkedin

|

Facebook

|

Pocket

|

Reddit

|

Hacker News

|

Email
Link
nextgensoft
@nextgensoft shared a link, 1ย day ago
Marketing Manager, nextgensoft

Agentic AI Systems: Types, Architecture & Enterprise Use Cases

Want to build Agentic AI System? Explore this guide on Agentic AI systems, their types, architecture, and enterprise use cases.

01- Agentic AI Systems-v2
Share: Twitter

|

Linkedin

|

Facebook

|

Pocket

|

Reddit

|

Hacker News

|

Email
Sigstore is an open source initiative designed to make software artifact signing and verification simple, automatic, and widely accessible. Its primary goal is to improve software supply chain security by enabling developers and organizations to cryptographically prove the origin and integrity of the software they build and distribute.

At its core, sigstore removes many of the traditional barriers associated with code signing. Instead of managing long-lived private keys manually, sigstore supports keyless signing, where identities are issued dynamically using OpenID Connect (OIDC) providers such as GitHub Actions, Google, or Microsoft. This dramatically lowers operational complexity and reduces the risk of key compromise.

The sigstore ecosystem is composed of several key components:

- Cosign: A tool for signing, verifying, and storing signatures for container images and other artifacts. Signatures are stored alongside artifacts in OCI registries, rather than embedded in them.

- Fulcio: A certificate authority that issues short-lived X.509 certificates based on OIDC identities, enabling keyless signing.

- Rekor: A transparency log that records signing events in an append-only, tamper-evident ledger. This provides public auditability and detection of suspicious or malicious signing activity.

Together, these components allow anyone to verify who built an artifact, when it was built, and whether it has been tampered with, using publicly verifiable cryptographic proofs. This aligns closely with modern supply chain security practices such as SLSA (Supply-chain Levels for Software Artifacts).

sigstore is widely adopted in the cloud-native ecosystem and integrates with tools like Kubernetes, container registries, CI/CD pipelines, and package managers. It is commonly used to sign container images, Helm charts, binaries, and SBOMs, and is increasingly becoming a baseline security requirement for production software delivery.

The project is governed by the OpenSSF (Open Source Security Foundation) and supported by major industry players.