Verifiable Blockchain Deployments with SLSA
Secure your smart contracts and frontend deployments with verifiable provenance and GitHub-based signing.
This section covers how SLSA (Supply-chain Levels for Software Artifacts) can be applied to blockchain development — from smart contracts to on-chain static sites.
Contents
SLSA on Blockchain
Overview of applying SLSA principles to blockchain workflows, with smart contract use cases.Walrus Sites Provenance
Deploy and verify static sites on the Sui blockchain using SLSA + GitHub Actions.Notary Frontend
Verification UI that checks.intoto.jsonl
metadata, file hashes, and signatures for Walrus Sites.
All tools in this section are built to interoperate.
You can deploy a site withwalrus-sites-provenance
, then verify it via notary.wal.app.