The Open Integrity Project integrates cryptographic trust mechanisms into Git repositories, enabling them to serve as cryptographic roots of trust to ensure verifiable chains of integrity, provenance, and authorship. By leveraging Git's native SSH-based signing capabilities and structured verification processes, Open Integrity ensures transparency and immutability for software projects without requiring modifications to Git itself.
- Immutable Proof-of-Origin β Verify the authenticity of software artifacts
- Signed Commits & Tags β Ensure authorship integrity through SSH signatures (~128-bit security)
- Tamper Detection β Maintain verifiable repository history
- Trust Delegation β Enable controlled transition from inception key to authorized signers
- Platform-Agnostic Validation β Work across GitHub, GitLab, and self-hosted solutions
- π Documentation β Documentation Hub, with problem statement, architecture, and guides
- π οΈ Tools & Scripts β Tools for creating and verifying Open Integrity repositories
- π¬ Discussions β Join the conversation
We welcome contributions from developers, security experts, and open-source enthusiasts.
- β Star our repositories to show support
- π’ Sharing your discoveries with your network
- π¬ Ask a question or engage in discussions in our Community Discussions
- βοΈ Report an issue in our Issue Tracker
- π Find Good First Issues to get started
- ποΈ Review our Contribution Guide
- π° Become a financial patron to our host Blockchain Commons via GitHub Sponsors
Unless otherwise noted, all files are Β©2025 Open Integrity Project / Blockchain Commons LLC., and licensed under the BSD 2-Clause Plus Patent License β See LICENSE for details.
The Open Integrity Project is an Open Development initiative hosted by Blockchain Commons, dedicated to advancing open, interoperable, secure & compassionate digital infrastructure, and embracing the Gordian Principles of independence, privacy, resilience, and openness.