Directories
¶
| Path | Synopsis |
|---|---|
|
Package boundedio provides IO utilities with security limits.
|
Package boundedio provides IO utilities with security limits. |
|
Package catalog provides tool catalog schema, caching, and search operations.
|
Package catalog provides tool catalog schema, caching, and search operations. |
|
resolve
Package resolve provides dependency resolution for tool installation.
|
Package resolve provides dependency resolution for tool installation. |
|
schema
Package schema provides the component catalog schema types and parsing.
|
Package schema provides the component catalog schema types and parsing. |
|
cli
|
|
|
exitmap
Package exitmap provides centralized error-to-exit-code mapping for the CLI.
|
Package exitmap provides centralized error-to-exit-code mapping for the CLI. |
|
output
Package output provides formatted output for the epack CLI.
|
Package output provides formatted output for the epack CLI. |
|
sigstore
Package sigstore provides shared utilities for Sigstore verification in CLI commands.
|
Package sigstore provides shared utilities for Sigstore verification in CLI commands. |
|
Package cmdutil provides shared CLI helpers for epack commands.
|
Package cmdutil provides shared CLI helpers for epack commands. |
|
Package collector provides collector execution and workflow orchestration.
|
Package collector provides collector execution and workflow orchestration. |
|
exec
Package exec provides process execution utilities for collectors.
|
Package exec provides process execution utilities for collectors. |
|
Package component provides unified types and utilities for both collectors and tools.
|
Package component provides unified types and utilities for both collectors and tools. |
|
config
Package config provides configuration parsing for epack.yaml files.
|
Package config provides configuration parsing for epack.yaml files. |
|
github
Package github provides a GitHub API client for fetching releases and assets.
|
Package github provides a GitHub API client for fetching releases and assets. |
|
lockfile
Package lockfile provides lockfile parsing, serialization, and management.
|
Package lockfile provides lockfile parsing, serialization, and management. |
|
semver
Package semver provides semantic version parsing and constraint matching.
|
Package semver provides semantic version parsing and constraint matching. |
|
sigstore
Package sigstore provides Sigstore signature verification for epack components.
|
Package sigstore provides Sigstore signature verification for epack components. |
|
sync
Package sync provides component synchronization and locking operations.
|
Package sync provides component synchronization and locking operations. |
|
Package componentsdk provides tools for component SDK authors.
|
Package componentsdk provides tools for component SDK authors. |
|
Package componenttypes defines shared types for component management.
|
Package componenttypes defines shared types for component management. |
|
Package conformance implements test vector runners for Evidence Pack spec conformance testing.
|
Package conformance implements test vector runners for Evidence Pack spec conformance testing. |
|
Package detach provides background process management for CLI operations.
|
Package detach provides background process management for CLI operations. |
|
Package digest provides a type-safe SHA256 digest implementation.
|
Package digest provides a type-safe SHA256 digest implementation. |
|
Package dispatch implements TOCTOU-safe tool execution with verification.
|
Package dispatch implements TOCTOU-safe tool execution with verification. |
|
Package execsafe provides TOCTOU-safe binary execution primitives.
|
Package execsafe provides TOCTOU-safe binary execution primitives. |
|
Package exitcode defines unified exit codes for epack CLI operations.
|
Package exitcode defines unified exit codes for epack CLI operations. |
|
Package intoto defines in-toto statement types for evidence pack attestations.
|
Package intoto defines in-toto statement types for evidence pack attestations. |
|
Package jcsutil provides JSON Canonicalization Scheme (JCS) per RFC 8785.
|
Package jcsutil provides JSON Canonicalization Scheme (JCS) per RFC 8785. |
|
Package jobs provides background job tracking for CLI operations.
|
Package jobs provides background job tracking for CLI operations. |
|
Package jsonutil provides hardened JSON decoding helpers for untrusted input.
|
Package jsonutil provides hardened JSON decoding helpers for untrusted input. |
|
Package limits provides helper functions for enforcing resource limits.
|
Package limits provides helper functions for enforcing resource limits. |
|
Package netpolicy provides URL and host validation for network requests.
|
Package netpolicy provides URL and host validation for network requests. |
|
Package packpath defines path constants and validation for evidence packs.
|
Package packpath defines path constants and validation for evidence packs. |
|
Package platform provides platform identification utilities.
|
Package platform provides platform identification utilities. |
|
Package platformpath provides OS-specific path safety helpers.
|
Package platformpath provides OS-specific path safety helpers. |
|
Package progress provides progress tracking for I/O operations.
|
Package progress provides progress tracking for I/O operations. |
|
Package project provides utilities for finding and working with epack project roots.
|
Package project provides utilities for finding and working with epack project roots. |
|
Package push implements the push workflow for uploading packs to remote registries.
|
Package push implements the push workflow for uploading packs to remote registries. |
|
Package redact provides structured redaction for output in CI environments.
|
Package redact provides structured redaction for output in CI environments. |
|
Package remote implements the Remote Adapter Protocol for epack push/pull operations.
|
Package remote implements the Remote Adapter Protocol for epack push/pull operations. |
|
Package safefile provides secure filesystem operations with symlink protection.
|
Package safefile provides secure filesystem operations with symlink protection. |
|
Package safejson provides secure JSON parsing with mandatory size validation.
|
Package safejson provides secure JSON parsing with mandatory size validation. |
|
Package safeyaml provides secure YAML parsing with mandatory pre-validation.
|
Package safeyaml provides secure YAML parsing with mandatory pre-validation. |
|
Package security provides security policy types and enforcement for epack operations.
|
Package security provides security policy types and enforcement for epack operations. |
|
testutil
|
|
|
importguard
Package importguard provides test helpers for enforcing import boundaries.
|
Package importguard provides test helpers for enforcing import boundaries. |
|
Package timestamp provides a type-safe timestamp implementation for evidence packs.
|
Package timestamp provides a type-safe timestamp implementation for evidence packs. |
|
Package toolcap provides capability probing for epack tools.
|
Package toolcap provides capability probing for epack tools. |
|
Package toolprotocol implements the epack Tool Protocol v1.
|
Package toolprotocol implements the epack Tool Protocol v1. |
|
Package userconfig manages user-level epack configuration and utilities.
|
Package userconfig manages user-level epack configuration and utilities. |
|
Package validate provides centralized security validation functions.
|
Package validate provides centralized security validation functions. |
|
Package verify provides verification workflows for evidence packs.
|
Package verify provides verification workflows for evidence packs. |
|
Package version provides shared version information for epack.
|
Package version provides shared version information for epack. |
|
Package yamlpolicy provides security-focused YAML parsing primitives.
|
Package yamlpolicy provides security-focused YAML parsing primitives. |
|
Package yamlutil provides utilities for deterministic YAML serialization.
|
Package yamlutil provides utilities for deterministic YAML serialization. |
|
Package ziputil validates and safely reads ZIP archives used by evidence packs.
|
Package ziputil validates and safely reads ZIP archives used by evidence packs. |
Click to show internal directories.
Click to hide internal directories.