Azure / container-scanLinks
A GitHub action to help you scan your docker image for vulnerabilities
☆221Updated 2 years ago
Alternatives and similar repositories for container-scan
Users that are interested in container-scan are comparing it to the libraries listed below
Sorting:
- Anchore container analysis and scan provided as a GitHub Action☆250Updated this week
- Security configuration checks for popular cloud native applications and infrastructure.☆119Updated 3 years ago
- ☆56Updated 2 years ago
- A VS Code Extension for Trivy☆144Updated last week
- Run a security scan on your terraform with the very nice https://github.com/aquasecurity/tfsec☆113Updated 10 months ago
- GitHub Action for creating software bill of materials using Syft.☆196Updated last week
- Proof-of-concept SLSA provenance generator for GitHub Actions☆100Updated 2 years ago
- Add comments to pull requests where tfsec checks have failed☆169Updated last year
- GitHub actions of KICS scan - Keeping Infrastructure as Code Secure☆50Updated last week
- An Action to wrap creating an SBOM via REST API☆18Updated this week
- Style guide for Rego☆201Updated 4 months ago
- ☆54Updated this week
- vscode extension for tfsec☆30Updated 2 years ago
- Evaluate source control (GitHub) security posture☆252Updated 2 years ago
- An extension for VS Code which provides support for OPA and the Rego policy language☆119Updated this week
- GitHub Action to create Kubernetes cluster secrets☆38Updated 2 weeks ago
- Terrascan GitHub action. Scan infrastructure as code including Terraform, Kubernetes, Helm, and Kustomize file for security best practice…☆62Updated 7 months ago
- Plugin for Docker CLI to support SBOM creation using Syft☆157Updated 3 months ago
- Github Action implementation of SLSA Provenance Generation☆49Updated last week
- Vanilla GitHub action to run tfsec☆55Updated 2 years ago
- CLI for searching Rego policies☆105Updated 3 years ago
- CodeQL Extractor, Library, and Queries for Infrastructure as Code☆51Updated this week
- Pre-commit git hooks for Open Policy Agent (OPA) and Rego development☆66Updated last month
- Open source compliance tool for development platforms.☆288Updated last year
- A GitHub Action for running the ZAP Baseline scan☆333Updated last month
- Tau is a thin wrapper on top of terraform to manage multiple deployments, dependencies and secrets.☆74Updated 4 months ago
- GitHub Action for setting context (retrieving Kubeconfig) before interacting with Kubernetes cluster☆55Updated last week
- A collection of reusable Github Actions workflows.☆135Updated last week
- GitHub Action creating Kubernetes manifest files with Helm, Kustomize, or Kompose☆61Updated this week
- Use Snyk to find and fix vulnerabilities in your Kubernetes workloads☆91Updated last week