The Seal approach
Drop-in replacements, sealed packages, sealing approaches, and the trust posture that ships with every artifact.
Last updated
Drop-in replacements, sealed packages, sealing approaches, and the trust posture that ships with every artifact.
If the remediation problem is "upgrades are expensive and frequently impossible", the Seal answer is to remove the upgrade requirement.
Seal builds sealed packages: drop-in replacements for the public versions you already use, with security fixes backported in. The version stays the same. The API stays the same. The dependencies stay the same. Only the vulnerable code changes.
The four pages below explain the model, the package, the delivery mechanics, and the trust posture.
Drop-in replacements, not upgrades: the mental model.
What a sealed package is: origin versions, backported fixes, the -sp[N] iteration, what is covered by default, and what an open vulnerability means.
How sealed packages are delivered: build-time dependency sealing versus post-build artifact sealing, and when each applies.
Trust by default: code diff, attestations, and signing. Deeper material in Trust, transparency & compliance.
Last updated