Join us

ContentUpdates and recent posts about Sigstore..
Link
@devopslinks shared a link, 1ย day, 5ย hours ago
FAUN.dev()

The memory crisis is getting so bad that even retro RAM prices are going to the Moon

DRAM buyers are switching to DDR2 as suppliers run short of mainstream memory, and some device makers are redesigning products around the legacy chip... read more ย 

The memory crisis is getting so bad that even retro RAM prices are going to the Moon
Link
@devopslinks shared a link, 1ย day, 5ย hours ago
FAUN.dev()

The database that refused to die: How Postgres survived its own creators

Postgres was developed by Michael Stonebraker and based on the Ingres database system, following ideas from Ted Codd for relational databases. Postgres introduced support for abstract data types, leading to its widespread adoption and compatibility with modern cloud infrastructure. Despite its succe.. read more ย 

The database that refused to die: How Postgres survived its own creators
Link
@devopslinks shared a link, 1ย day, 5ย hours ago
FAUN.dev()

Some notes on Lambda MicroVMs

AWS would give developers a middle tier between Lambda functions and ECS or EC2. You get per-VM identity, network addressability, and stronger process isolation while keeping Lambda's burst model. The runtime would fit workloads that need warm state, longer-lived workers, per-tenant sandboxes, proto.. read more ย 

Link
@devopslinks shared a link, 1ย day, 5ย hours ago
FAUN.dev()

Local AI for Penetration Testing & Research

Model intelligence and tradecraft have progressed a lot in the year that's passed since I last tried something similar. There's a lot of hype around the research Anthropic is publishing; however, cost and privacy are still problems. When there's no guarantee that a thorough job was performed, this t.. read more ย 

Local AI for Penetration Testing & Research
Link
@devopslinks shared a link, 1ย day, 5ย hours ago
FAUN.dev()

.self: A new Top-Level Domain built from theground up to support self-hosting

Operated as a public good, .self TLD will be designed and implemented according to human-centered principles to enable anyone to take full ownership of their data... read more ย 

Story
@laura_garcia shared a post, 1ย day, 12ย hours ago
Software Developer, RELIANOID

๐—ฅ๐—˜๐—Ÿ๐—œ๐—”๐—ก๐—ข๐—œ๐—— ๐—ฎ๐—น๐—ถ๐—ด๐—ป๐˜€ ๐˜„๐—ถ๐˜๐—ต ๐˜๐—ต๐—ฒ ๐—ฝ๐—ฟ๐—ถ๐—ป๐—ฐ๐—ถ๐—ฝ๐—น๐—ฒ๐˜€ ๐—ผ๐—ณ ๐—œ๐—ฆ๐—ข/๐—œ๐—˜๐—– ๐Ÿฒ๐Ÿฎ๐Ÿฐ๐Ÿฐ๐Ÿฏ

๐Ÿšจ ๐—œ๐—ป๐—ฑ๐˜‚๐˜€๐˜๐—ฟ๐—ถ๐—ฎ๐—น ๐—ฐ๐˜†๐—ฏ๐—ฒ๐—ฟ๐˜€๐—ฒ๐—ฐ๐˜‚๐—ฟ๐—ถ๐˜๐˜† ๐—ถ๐˜€ ๐—ป๐—ผ ๐—น๐—ผ๐—ป๐—ด๐—ฒ๐—ฟ ๐—ผ๐—ฝ๐˜๐—ถ๐—ผ๐—ป๐—ฎ๐—น โ€” ๐—ถ๐˜'๐˜€ ๐—ณ๐—ผ๐˜‚๐—ป๐—ฑ๐—ฎ๐˜๐—ถ๐—ผ๐—ป๐—ฎ๐—น. We're proud to share that ๐—ฅ๐—˜๐—Ÿ๐—œ๐—”๐—ก๐—ข๐—œ๐—— ๐—ฎ๐—น๐—ถ๐—ด๐—ป๐˜€ ๐˜„๐—ถ๐˜๐—ต ๐˜๐—ต๐—ฒ ๐—ฝ๐—ฟ๐—ถ๐—ป๐—ฐ๐—ถ๐—ฝ๐—น๐—ฒ๐˜€ ๐—ผ๐—ณ ๐—œ๐—ฆ๐—ข/๐—œ๐—˜๐—– ๐Ÿฒ๐Ÿฎ๐Ÿฐ๐Ÿฐ๐Ÿฏ, the ๐˜ช๐˜ฏ๐˜ต๐˜ฆ๐˜ณ๐˜ฏ๐˜ข๐˜ต๐˜ช๐˜ฐ๐˜ฏ๐˜ข๐˜ญ๐˜ญ๐˜บ ๐˜ณ๐˜ฆ๐˜ค๐˜ฐ๐˜จ๐˜ฏ๐˜ช๐˜ป๐˜ฆ๐˜ฅ ๐˜ด๐˜ต๐˜ข๐˜ฏ๐˜ฅ๐˜ข๐˜ณ๐˜ฅ ๐˜ง๐˜ฐ๐˜ณ ๐˜ด๐˜ฆ๐˜ค๐˜ถ๐˜ณ๐˜ช๐˜ฏ๐˜จ ๐˜๐˜ฏ๐˜ฅ๐˜ถ๐˜ด๐˜ต๐˜ณ๐˜ช๐˜ข๐˜ญ ๐˜ˆ๐˜ถ๐˜ต๐˜ฐ๐˜ฎ๐˜ข๐˜ต๐˜ช๐˜ฐ๐˜ฏ ๐˜ข๐˜ฏ๐˜ฅ ๐˜Š๐˜ฐ๐˜ฏ๐˜ต๐˜ณ๐˜ฐ๐˜ญ ๐˜š๐˜บ๐˜ด๐˜ต๐˜ฆ๐˜ฎ๐˜ด (๐˜๐˜ˆ๐˜Š๐˜š). From manufacturing and energy to utilities, go..

ย Activity
@david6983 started using tool Kubernetes , 2ย days, 11ย hours ago.
ย Activity
@david6983 started using tool Helm , 2ย days, 11ย hours ago.
ย Activity
@david6983 started using tool Google Kubernetes Engine (GKE) , 2ย days, 11ย hours ago.
ย Activity
@david6983 started using tool Flux , 2ย days, 11ย hours ago.
Sigstore is an open source initiative designed to make software artifact signing and verification simple, automatic, and widely accessible. Its primary goal is to improve software supply chain security by enabling developers and organizations to cryptographically prove the origin and integrity of the software they build and distribute.

At its core, sigstore removes many of the traditional barriers associated with code signing. Instead of managing long-lived private keys manually, sigstore supports keyless signing, where identities are issued dynamically using OpenID Connect (OIDC) providers such as GitHub Actions, Google, or Microsoft. This dramatically lowers operational complexity and reduces the risk of key compromise.

The sigstore ecosystem is composed of several key components:

- Cosign: A tool for signing, verifying, and storing signatures for container images and other artifacts. Signatures are stored alongside artifacts in OCI registries, rather than embedded in them.

- Fulcio: A certificate authority that issues short-lived X.509 certificates based on OIDC identities, enabling keyless signing.

- Rekor: A transparency log that records signing events in an append-only, tamper-evident ledger. This provides public auditability and detection of suspicious or malicious signing activity.

Together, these components allow anyone to verify who built an artifact, when it was built, and whether it has been tampered with, using publicly verifiable cryptographic proofs. This aligns closely with modern supply chain security practices such as SLSA (Supply-chain Levels for Software Artifacts).

sigstore is widely adopted in the cloud-native ecosystem and integrates with tools like Kubernetes, container registries, CI/CD pipelines, and package managers. It is commonly used to sign container images, Helm charts, binaries, and SBOMs, and is increasingly becoming a baseline security requirement for production software delivery.

The project is governed by the OpenSSF (Open Source Security Foundation) and supported by major industry players.