Seedwing Policy
A policy engine for securing your software supply-chain.
Get startedA policy engine for securing your software supply-chain.
Get startedWritten in Rust to minimise policy evaluation time and resource usage
Run locally as a library, using the REST API or run as a WebAssembly module
Plug into your CI/CD pipeline and enforce in your IDE
Check your project and dependencies for valid licenses, vulnerabilities, build attestations and signatures.
Keep policies managed centrally in your organization to avoid individiual team drifting.
Verify and check signatures by key holders before promoting artifacts from staging to production