This directory contains the artifacts of Security TAG's various assessments and reviews of projects. Information on the processes to by which these artifacts are produced can be found in the guide.
| Project | Type | dtd |
|---|---|---|
| Cloud Native Buildpacks | Joint Review | 2021 September |
| Harbor | Joint Review | 2020 April |
| in-toto | Joint Review | 2019 May |
| Keycloak | Joint Review | 2020 |
| Open Policy Agent | Joint Review | 2019 September |
| SPIFFE/SPIRE | Joint Review | 2020 February |
If you are looking for the listing of audits of CNCF projects, please refer to the CNCF's TOC repository under projects.