rust-supply-chain-attestation
OfficialEnsure Rust supply chain integrity and compliance with SBOM, SLSA, and more.
Authorsparq-org
Version1.0.0
Installs0
System Documentation
What problem does it solve?
This Skill addresses the challenge of ensuring the integrity and compliance of Rust supply chains with various security and compliance frameworks like SBOM, SLSA, and OpenSSF.
Core Features & Use Cases
- Supply Chain Attestation: Provides a comprehensive guide on how sparq attests its Rust supply chain, including cargo-deny, CycloneDX SBOM, SLSA build provenance, and OpenSSF Scorecard.
- Framework Compliance: Offers detailed information on which tools are used to assert specific claims for SBOM, SLSA, NIST SSDF, EU CRA, and OpenSSF certification frameworks.
- Use Case: When working on a certification framework, this Skill helps identify the necessary evidence and tools to meet the requirements for SBOM, SLSA, and other frameworks.
Quick Start
Use the rust-supply-chain-attestation skill to understand the tools and evidence required for SBOM, SLSA, and OpenSSF certification frameworks.
Dependency Matrix
Required Modules
cargo-denycargo-cyclonedxcargo-auditablecargo-vetattest-build-provenanceOpenSSF Scorecard
Components
scriptsreferencesassets
💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: rust-supply-chain-attestation Download link: https://github.com/sparq-org/sparq/archive/main.zip#rust-supply-chain-attestation Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 620,000+ vetted skills library on demand.