Tag
transparency-log
Safeguard articles tagged "transparency-log" — guides, analysis, and best practices for software supply chain and application security.
3 articles
Software Supply Chain Security
Rekor transparency log
What is Rekor? It's the public, immutable transparency log at the heart of Sigstore that records software signing events for tamper-evident verification.
Mar 4, 20267 min read
Software Supply Chain Security
Sigstore Rekor Transparency Log Deep Dive 2026
How Rekor actually works in 2026, the trade-offs of the current Merkle tree design, witness diversity, and the operational realities of verifying inclusion at scale.
Feb 4, 20266 min read
SBOM & Compliance
Sigstore Rekor Transparency Log Operations
Rekor is the transparency log behind Sigstore, and understanding its operational model matters more than most teams realise. Here is how we run against it in production.
Apr 18, 20247 min read