The Securing Software Repositories Working Group provides a collaborative environment for aligning on the introduction of new tools and technologies to strengthen and secure software repositories.
This collection of projects is for and focuses on the maintainers of software repositories, software registries, and tools which rely on them, at various levels including system, language, plugin, extensions and container systems.
Projects
The Supply Chain Integrity and Security Tooling working groups also support some of the projects in this category.