Our team has been developing software supply chain automation for over a decade with the aim of delivering trusted software quickly.
We built Chainloop because we believe the key enabler is software supply chain metadata that you can trust, and we are fortunate to be able to leverage foundational open-source projects like Sigstore, SLSA, and in-toto.
Today, we are excited to join The Open Source Security Foundation (OpenSSF). This reaffirms our commitment to open-source and will propel our mission of helping developers ship trusted software faster.
If you are interested in discussing Software Supply Chain Security or want to know more about what we are up to, let's meet!
Please send feedback our way, and if you like what we do, give our GitHub repository a star :)