Witness is an open-source project that allows software producers to make and verify attestations about the software they produce, making it easy to produce verifiable evidence for software builds. Archivist is a platform that stores these attestations. The goal is to automate pipeline compliance and ensure that the build materials that are expected to go into the build actually do go into that build.
- Witness implements the internal specifications and allows software producers to make and verify attestations about the software they produce
- It has integrations with open-source projects such as Sig store, Inspire, GitHub, and GitLab
- Witness makes it easy to produce verifiable evidence for software builds
- It supports both containerized and non-containerized workloads
- Archivist stores these attestations
- The goal is to automate pipeline compliance and ensure that the build materials that are expected to go into the build actually do go into that build