Supply Chain Security

Security

Generates SLSA provenance attestations, signs artifacts with Sigstore/cosign, verifies supply chain integrity, enforces signed commits, and ensures end-to-end software artifact traceability. Essential for SLSA compliance and supply chain security.