Azure / container-scanLinks
A GitHub action to help you scan your docker image for vulnerabilities
☆221Updated 2 years ago
Alternatives and similar repositories for container-scan
Users that are interested in container-scan are comparing it to the libraries listed below
Sorting:
- Anchore container analysis and scan provided as a GitHub Action☆244Updated last week
- Security configuration checks for popular cloud native applications and infrastructure.☆118Updated 3 years ago
- GitHub Action for creating software bill of materials using Syft.☆187Updated last week
- GitHub actions of KICS scan - Keeping Infrastructure as Code Secure☆49Updated last week
- GitHub Advance Security Compliance Action☆132Updated 2 years ago
- Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec☆112Updated 7 months ago
- A VS Code Extension for Trivy☆137Updated this week
- Plugin for Docker CLI to support SBOM creation using Syft☆156Updated last month
- A collection of reusable Github Actions workflows.☆132Updated last week
- ☆80Updated last year
- Add comments to pull requests where tfsec checks have failed☆167Updated last year
- A utility to generate SPDX-compliant Bill of Materials manifests☆390Updated 2 weeks ago
- Open source compliance tool for development platforms.☆286Updated last year
- Kubernetes Common Configuration Scoring System☆124Updated 2 years ago
- Pre-commit git hooks for Open Policy Agent (OPA) and Rego development☆66Updated 3 years ago
- GitHub Advanced Security Policy as Code☆82Updated last week
- A tool to create, transform and attest VEX metadata☆138Updated last week
- Cross tooling and interoperability specifications☆170Updated 2 weeks ago
- Run multiple open source security static analysis tools without the added complexity with OSSAR (Open Source Static Analysis Runner).☆96Updated last year
- Need to centrally manage and run Actions workflows across multiple repositories? This app does it for you.☆133Updated last year
- Scan Kubernetes resource files , and helm charts for security configurations issues and best practices.☆206Updated 2 years ago
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆49Updated last week
- ☆56Updated last year
- GitHub Action creating Kubernetes manifest files with Helm, Kustomize, or Kompose☆57Updated last week
- Notice: Postee is no longer under active development or maintenance.☆211Updated this week
- ☆52Updated this week
- Proof-of-concept SLSA provenance generator for GitHub Actions☆99Updated 2 years ago
- Evaluate source control (GitHub) security posture☆249Updated 2 years ago
- An admission controller that integrates Container Image Signature Verification into a Kubernetes cluster☆455Updated this week
- Official GitHub Action for OpenSSF Scorecard.☆307Updated this week