A library that provides cryptographic and general-purpose routines for Secure Systems Lab projects at NYU

These details have been verified by PyPI

Project links

GitHub Statistics

Maintainers

These details have not been verified by PyPI

Project description

securesystemslib

Securesystemslib is a cryptography interface for signing and verifying digital signatures. It is developed for the TUF and in-toto projects: the key and signature containers are compatible with metadata formats from those projects.

Under the hood, Securesystemslib can use various digital signing systems (e.g. cryptography, PIV hardware keys and multiple cloud-based key management systems).

Installation

The default installation supports pure-Python ed25519 signature verification only. To enable other schemes and signature creation, securesystemslib can be installed with extras. See pyproject.toml for available optional dependencies.

# Install with ed25519, RSA, ECDSA sign and verify support
pip install securesystemslib[crypto]

# ...or with HSM (e.g. Yubikey) support
pip install securesystemslib[hsm]

Usage

python-securesystemslib.readthedocs.io

Contact

Questions and discussions: #securesystemslib-python on CNCF Slack
Security issues: see Security policy
Other issues and requests: Open a new issue

Contribute

See Instructions for contributors.

Legacy key migration

Use migrate_keys script to convert key pairs generated with legacy keys or interface modules to a consistent standard format, which is compatible with CryptoSigner. The script requires securesystemslib~=0.31.0.

Project details

These details have been verified by PyPI

Project links

GitHub Statistics

Maintainers

awwad jku joshuagl lukpueh torresariass

These details have not been verified by PyPI

Release history Release notifications | RSS feed

This version

1.3.0

Apr 15, 2025

1.2.0

Dec 3, 2024

1.1.0

Jun 4, 2024

1.0.0

May 2, 2024

0.31.0

Dec 4, 2023

0.30.0

Oct 3, 2023

0.29.0

Sep 6, 2023

0.28.0

Apr 18, 2023

0.27.0

Mar 14, 2023

0.26.0

Jan 13, 2023

0.25.0

Oct 18, 2022

0.24.0

Sep 14, 2022

0.23.0

Apr 26, 2022

0.22.0

Feb 10, 2022

0.21.0

Aug 25, 2021

0.20.1

May 10, 2021

0.20.0

Feb 26, 2021

0.19.0

Feb 16, 2021

0.18.0

Nov 10, 2020

0.17.0

Oct 21, 2020

0.16.0

Aug 11, 2020

0.15.0

May 14, 2020

0.14.2

Feb 26, 2020

0.14.1

Feb 25, 2020

0.14.0

Jan 30, 2020

0.13.1

Dec 18, 2019

0.13.0

Dec 17, 2019

0.12.2

Nov 11, 2019

0.12.1

Oct 29, 2019

0.12.0

Oct 14, 2019

0.11.3

Sep 27, 2018

0.11.2

Jun 1, 2018

0.11.1

Apr 30, 2018

0.11.0

Apr 11, 2018

0.10.11

Mar 28, 2018

0.10.10

Jan 31, 2018

0.10.9

Jan 18, 2018

0.10.8

Nov 8, 2017

0.10.7

Aug 23, 2017

0.10.6

Jul 17, 2017

0.10.5

Jun 15, 2017

0.10.4

Jan 23, 2017

0.10.3

Jan 19, 2017

0.10.2

Jan 13, 2017

0.10.1

Jan 13, 2017

0.10.0

Jan 12, 2017

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

securesystemslib-1.3.0.tar.gz (934.6 kB view details)

Uploaded Apr 15, 2025 Source

Built Distribution

securesystemslib-1.3.0-py3-none-any.whl (871.2 kB view details)

Uploaded Apr 15, 2025 Python 3

File details

Details for the file securesystemslib-1.3.0.tar.gz.

File metadata

Download URL: securesystemslib-1.3.0.tar.gz
Upload date: Apr 15, 2025
Size: 934.6 kB
Tags: Source
Uploaded using Trusted Publishing? Yes
Uploaded via: twine/6.1.0 CPython/3.12.9

File hashes

Hashes for securesystemslib-1.3.0.tar.gz
Algorithm	Hash digest
SHA256	`5b53e5989289d97fa42ed7fde1b4bad80985f15dba8c774c043b395a90c908e5`
MD5	`aae5ae631bebf725f8085885f17dcd0f`
BLAKE2b-256	`f2d46f0ce9503269a94c307a51827c5c9fe0aa8f6b6aaaf9af36c9c611ba65f6`

See more details on using hashes here.

Provenance

The following attestation bundles were made for securesystemslib-1.3.0.tar.gz:

Publisher: cd.yml on secure-systems-lab/securesystemslib

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Statement:
- Statement type: https://in-toto.io/Statement/v1
- Predicate type: https://docs.pypi.org/attestations/publish/v1
- Subject name: securesystemslib-1.3.0.tar.gz
- Subject digest: 5b53e5989289d97fa42ed7fde1b4bad80985f15dba8c774c043b395a90c908e5
- Sigstore transparency entry: 197273632
- Sigstore integration time: Apr 15, 2025
Source repository:
- Permalink: secure-systems-lab/securesystemslib@47f271571958ae65352127029f4b1a9b1f94e7a6
- Branch / Tag: refs/tags/v1.3.0
- Owner: https://github.com/secure-systems-lab
- Access: public
Publication detail:
- Token Issuer: https://token.actions.githubusercontent.com
- Runner Environment: github-hosted
- Publication workflow: cd.yml@47f271571958ae65352127029f4b1a9b1f94e7a6
- Trigger Event: push

File details

Details for the file securesystemslib-1.3.0-py3-none-any.whl.

File metadata

Download URL: securesystemslib-1.3.0-py3-none-any.whl
Upload date: Apr 15, 2025
Size: 871.2 kB
Tags: Python 3
Uploaded using Trusted Publishing? Yes
Uploaded via: twine/6.1.0 CPython/3.12.9

File hashes

Hashes for securesystemslib-1.3.0-py3-none-any.whl
Algorithm	Hash digest
SHA256	`8cbb277513444d9828016fe09eaa4a6fe25468e4bf411995c0542c6d2102af83`
MD5	`2e53e80dc4510ad53e480bfd879828a1`
BLAKE2b-256	`48d3f748fb3422459a30f0aef59ec4d4edd8976a93063cc7c03c1241c17a6278`

See more details on using hashes here.

Provenance

The following attestation bundles were made for securesystemslib-1.3.0-py3-none-any.whl:

Publisher: cd.yml on secure-systems-lab/securesystemslib

Attestations: Values shown here reflect the state when the release was signed and may no longer be current.

Statement:
- Statement type: https://in-toto.io/Statement/v1
- Predicate type: https://docs.pypi.org/attestations/publish/v1
- Subject name: securesystemslib-1.3.0-py3-none-any.whl
- Subject digest: 8cbb277513444d9828016fe09eaa4a6fe25468e4bf411995c0542c6d2102af83
- Sigstore transparency entry: 197273638
- Sigstore integration time: Apr 15, 2025
Source repository:
- Permalink: secure-systems-lab/securesystemslib@47f271571958ae65352127029f4b1a9b1f94e7a6
- Branch / Tag: refs/tags/v1.3.0
- Owner: https://github.com/secure-systems-lab
- Access: public
Publication detail:
- Token Issuer: https://token.actions.githubusercontent.com
- Runner Environment: github-hosted
- Publication workflow: cd.yml@47f271571958ae65352127029f4b1a9b1f94e7a6
- Trigger Event: push

securesystemslib 1.3.0

Navigation

Verified details

Project links

GitHub Statistics

Maintainers

Unverified details

Meta

Classifiers

Project description

securesystemslib

Installation

Usage

Contact

Contribute

Legacy key migration

Project details

Verified details

Project links

GitHub Statistics

Maintainers

Unverified details

Meta

Classifiers

Release history Release notifications | RSS feed

Download files

Source Distribution

Built Distribution

File details

File metadata

File hashes

Provenance

File details

File metadata

File hashes

Provenance