New: AI agents can shop on Cubbie Read →

Open-source project providing free code signing and verification infrastructure for software supply chain integrity and provenance.

Pricing

Free

Founded

2021

Team size

11-50 employees

Headquarters

Mountain View, CA

Sigstore preview

Preview from sigstore.dev

At a glance

Best for

Software Developers

Try before you buy

Free plan

About Sigstore

Sigstore is an open-source software supply-chain security project that makes signing, verifying and proving the provenance of software artifacts easy and free. It provides keyless signing via short-lived certificates (Fulcio), a transparency log (Rekor) and the cosign tool for containers and packages. It targets developers and organizations securing their build and release pipelines.

Procurement & Fit

Structured facts from the vendor to help your security, finance, and procurement reviews move faster.

Trust

Security & compliance

The vendor hasn’t added security or compliance details yet.

Pricing

Commercial model

Pricing model: Not specified

Free trial: No

Free plan: Yes

Contract minimum: Not specified

Procurement

Purchasing & legal

The vendor hasn’t added purchasing & legal details yet.

Fit

Best-fit company size

Company-size fit has not been specified yet.

Buyer Fit & Positioning

Implementation & Procurement

Commercial Fit & Ecosystem

Proof, Outcomes & Momentum

Alternatives, Migration & Buyer Objections