Harness Software Supply Chain Security (SCS) CLI tool. It helps you generate, manage, and verify software supply chain attestations and provenance metadata as part of your CI/CD pipelines.
curl -fsSL https://raw.githubusercontent.com/harness/harness-scs/main/install.sh | shOr using wget:
wget -qO- https://raw.githubusercontent.com/harness/harness-scs/main/install.sh | shVERSION=1.0.0 curl -fsSL https://raw.githubusercontent.com/harness/harness-scs/main/install.sh | shharness-scs versionThe binary is installed to /usr/local/bin by default. If elevated permissions are required, the script will automatically prompt for sudo.
| OS | Architecture |
|---|---|
| Linux | amd64, arm64 |
| macOS | amd64, arm64 |
Pre-built binaries are available on the Releases page. Each release includes SHA-256 checksums for verification. The install script automatically downloads and verifies checksums before installing.
The install script requires one of the following:
curlorwgetfor downloadingsha256sumorshasumfor checksum verification (optional but recommended)
This project uses code from go-witness, licensed under the Apache License 2.0. See the NOTICE file for full attribution details.
This project is licensed under the Apache License 2.0. See LICENSE for the full license text.