A library of rules for Conftest used to detect misconfigurations within Terraform configuration files
☆190Sep 20, 2022Updated 3 years ago
Alternatives and similar repositories for confectionery
Users that are interested in confectionery are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- CLI for searching Rego policies☆105Feb 5, 2022Updated 4 years ago
- Automatically removes Cloud managed services and Kubernetes resources based on tags with TTL☆227Updated this week
- Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes se…☆964Sep 3, 2024Updated last year
- CloudSplaining on AWS Managed Policies☆44Sep 8, 2025Updated 6 months ago
- This is just a proof-of-concept project that aims to sign and verify container images using cosign and OPA (Open Policy Agent)☆63Aug 4, 2021Updated 4 years ago
- Automatically compile an AWS Service Control Policy that ONLY allows AWS services that are compliant with your preferred compliance frame…☆224Aug 11, 2023Updated 2 years ago
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆60Oct 19, 2023Updated 2 years ago
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆3,142Mar 14, 2026Updated last week
- A simple tool for converting Rego (OPA) rule into command.☆30Jun 1, 2022Updated 3 years ago
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆55Jan 12, 2026Updated 2 months ago
- Self-hosted GitHub Actions runner on GCP using GCE.☆39Jun 25, 2023Updated 2 years ago
- A tool to help with some Terraform operations☆90Aug 14, 2025Updated 7 months ago
- Open source compliance tool for development platforms.☆286Oct 30, 2023Updated 2 years ago
- Dockerfile Security Checker using OPA Rego policies with Conftest☆62Jun 27, 2022Updated 3 years ago
- Look up region and other information for any AWS IP address☆89Feb 27, 2023Updated 3 years ago
- ☆284Dec 1, 2022Updated 3 years ago
- ☆177Jun 19, 2025Updated 9 months ago
- Safer AWS SCP deployments via real-time monitoring☆56Sep 30, 2023Updated 2 years ago
- Terraform module for Policy Sentry.☆26Nov 10, 2020Updated 5 years ago
- Fugue Rego Toolkit☆234Jun 30, 2022Updated 3 years ago
- A curated list of OPA related tools, frameworks and articles☆869Jan 16, 2026Updated 2 months ago
- Automatically resize your ebs☆45Mar 1, 2023Updated 3 years ago
- Watch your in cluster Kubernetes manifests for OPA policy violations and export them as Prometheus metrics☆50Jul 4, 2023Updated 2 years ago
- Policy as Code framework to control your Terraform deployments with HCL files.☆25Mar 19, 2023Updated 3 years ago
- Detect, track and alert on infrastructure drift☆2,627Jan 30, 2026Updated last month
- Allows you to manage configuration and secrets from multiple provider while masking the secrets at the deployment☆70Nov 14, 2022Updated 3 years ago
- Open-source components of CyberArk Certificate Manager for Kubernetes Discovery.☆260Mar 10, 2026Updated last week
- The Open Policy Agent project standard library.☆105Oct 16, 2023Updated 2 years ago
- Generate an IAM policy from AWS, Azure, or Google Cloud (GCP) calls using client-side monitoring (CSM) or embedded proxy☆3,343Nov 13, 2025Updated 4 months ago
- A policy management tool for interacting with Gatekeeper☆391Nov 20, 2025Updated 4 months ago
- Help manage AWS systems manager with helpers☆389Oct 17, 2022Updated 3 years ago
- PolicyGlass allows you to analyse one or more AWS policies' effective permissions in aggregate, by restating them in the form of PolicySh…☆60Jan 9, 2022Updated 4 years ago
- Identity & Access Management simplified and secure.☆259Mar 6, 2023Updated 3 years ago
- ☆108Dec 1, 2021Updated 4 years ago
- A wrapper around terraform state commands to provide guard rails 🔒☆36Jan 4, 2023Updated 3 years ago
- a lightweight, security focused, BDD test framework against terraform.☆1,441Dec 8, 2025Updated 3 months ago
- [WORK IN PROGRESS] A repo containing rule sets for cloud-custodian inside GSA AWS accounts. This repo does not contain cloud-custodian it…☆30Dec 4, 2017Updated 8 years ago
- Experimental: TFLint ruleset plugin for writing custom rules in Rego.☆83Updated this week
- A GitHub Action for using Conftest☆33Nov 29, 2021Updated 4 years ago