Alternatives and similar repositories for container-scan

Users that are interested in container-scan are comparing it to the libraries listed below

• aquasecurity / appshield
  Security configuration checks for popular cloud native applications and infrastructure.
  ☆119Updated 3 years ago
• anchore / scan-action
  Anchore container analysis and scan provided as a GitHub Action
  ☆264Updated 2 weeks ago
• docker / sbom-cli-plugin
  Plugin for Docker CLI to support SBOM creation using Syft
  ☆161Updated last month
• triat / terraform-security-scan
  Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec
  ☆112Updated last year
• aquasecurity / tfsec-pr-commenter-action
  Add comments to pull requests where tfsec checks have failed
  ☆169Updated 2 years ago
• philips-labs / slsa-provenance-action
  Github Action implementation of SLSA Provenance Generation
  ☆50Updated last week
• aquasecurity / trivy-vscode-extension
  A VS Code Extension for Trivy
  ☆159Updated last week
• anchore / sbom-action
  GitHub Action for creating software bill of materials using Syft.
  ☆213Updated 2 weeks ago
• aquasecurity / tfsec-sarif-action
  ☆55Updated 2 years ago
• slsa-framework / github-actions-demo
  Proof-of-concept SLSA provenance generator for GitHub Actions
  ☆100Updated 3 years ago
• advanced-security / generate-sbom-action
  An Action to wrap creating an SBOM via REST API
  ☆20Updated 3 weeks ago
• anderseknert / pre-commit-opa
  Pre-commit git hooks for Open Policy Agent (OPA) and Rego development
  ☆67Updated 6 months ago
• snyk / kubernetes-monitor
  Use Snyk to find and fix vulnerabilities in your Kubernetes workloads
  ☆95Updated last week
• open-policy-agent / vscode-opa
  An extension for VS Code which provides support for OPA and the Rego policy language
  ☆124Updated last week
• advanced-security / codeql-extractor-iac
  CodeQL Extractor, Library, and Queries for Infrastructure as Code
  ☆57Updated 2 weeks ago
• Checkmarx / kics-github-action
  GitHub actions of KICS scan - Keeping Infrastructure as Code Secure
  ☆52Updated last week
• reposaur / reposaur
  Open source compliance tool for development platforms.
  ☆287Updated 2 years ago
• notaryproject / specifications
  Cross tooling and interoperability specifications
  ☆174Updated 7 months ago
• chainguard-dev / actions
  A collection of reusable Github Actions workflows.
  ☆153Updated last month
• aquasecurity / trivy-checks
  ☆63Updated last week
• zaproxy / action-baseline
  A GitHub Action for running the ZAP Baseline scan
  ☆347Updated last month
• scribe-public / gitgat
  Evaluate source control (GitHub) security posture
  ☆251Updated 2 years ago
• open-policy-agent / rego-style-guide
  Style guide for Rego
  ☆203Updated this week
• aquasecurity / vscode-tfsec
  vscode extension for tfsec
  ☆30Updated 3 years ago
• alcideio / skan
  Scan Kubernetes resource files , and helm charts for security configurations issues and best practices.
  ☆205Updated 2 years ago
• snyk-labs / helm-snyk
  Check images in your charts for vulnerabilities
  ☆43Updated last month
• aquasecurity / tfsec-action
  Vanilla GitHub action to run tfsec
  ☆59Updated 2 years ago
• aquasecurity / postee
  Notice: Postee is no longer under active development or maintenance.
  ☆207Updated 4 months ago
• policy-hub / policy-hub-cli
  CLI for searching Rego policies
  ☆106Updated 3 years ago
• aquasecurity / docker-bench
  Checks whether Docker is deployed according to security best practices as defined in the CIS Docker Benchmark
  ☆221Updated 11 months ago