#syft

Rebuilding for Compliance, Part 3: Building Secure Containers on Wolfi

Part 3 — how I put Wolfi, syft, grype, and cosign to work in hagzag/tools: a CI toolchain image with SBOM validation, keyless signing, and a single-command local loop.