lucashgrifoni/Secure-SDLC-Evidence-Collector

GitHub: lucashgrifoni/Secure-SDLC-Evidence-Collector

一款 CLI 优先的 DevSecOps 工具，用于自动收集、标准化并评估每次发布的安全开发生命周期证据，生成可审计的发布就绪判定。

Stars: 0 | Forks: 0

# Secure SDLC 证据收集器 [![CI](https://static.pigsec.cn/wp-content/uploads/repos/2026/06/376279a399080141.svg)](https://github.com/lucashgrifoni/Secure-SDLC-Evidence-Collector/actions/workflows/github-ci-cd.yml) [![Security CI](https://static.pigsec.cn/wp-content/uploads/repos/2026/06/1bbbf688b4080143.svg)](https://github.com/lucashgrifoni/Secure-SDLC-Evidence-Collector/actions/workflows/security-ci-cd.yml) [![PyPI](https://img.shields.io/pypi/v/secure-sdlc-evidence-collector)](https://pypi.org/project/secure-sdlc-evidence-collector/) ![Python 3.12 & 3.13](https://img.shields.io/badge/python-3.12%20%7C%203.13-blue) ![License Apache 2.0](https://img.shields.io/badge/license-Apache--2.0-green) [![Cosign signing configured](https://img.shields.io/badge/release%20signing-cosign%20keyless%20(configured)-9cf)](https://github.com/lucashgrifoni/Secure-SDLC-Evidence-Collector/actions/workflows/publish-pypi.yml)