CycodeLabs / cimon-action
Runtime Security Solution for your CI/CD Pipeline
☆88Updated 2 months ago
Related projects ⓘ
Alternatives and complementary repositories for cimon-action
- A tool to check the security settings of Github Organizations.☆69Updated last year
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆61Updated last year
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆95Updated 7 months ago
- Kubernetes audit logging, when you don't control the control plane☆65Updated this week
- Format agnostic SBOM tooling☆82Updated this week
- An SBOM query language and associated utilities☆54Updated 10 months ago
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆139Updated this week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆59Updated 8 months ago
- Simple plug-and-play Github Action to block unauthorized outbound traffic (egress) in your Github workflows☆79Updated this week
- The security workflow engine!☆73Updated this week
- A tool to create, transform and attest VEX metadata☆119Updated this week
- Generate a score for your sbom to understand if it will actually be useful.☆221Updated 3 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆66Updated 11 months ago
- ☆51Updated 8 months ago
- Enrich SBOMs with data from third party services☆121Updated this week
- vexctl is a tool to attest VEX impact statements☆44Updated last year
- OpenVEX Specification☆132Updated 4 months ago
- a tool to audit the istio service mesh☆173Updated 3 years ago
- Sneefer is a PoC project showing how to filter out irrelevent vulnerabilities from container image vulnerability scan results. It is base…☆26Updated last year
- A full insecure kubernetes application for testing security tools☆54Updated this week
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆76Updated this week
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆32Updated 2 years ago
- ☆30Updated 3 weeks ago
- Tool for collecting vulnerability data from various sources (used to build the grype database)☆76Updated this week
- Compare data from multiple vulnerability scanners to get a more complete picture of potential exposures.☆59Updated last year
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆73Updated this week
- Static analysis for CloudFormation templates to identify common misconfiguration☆58Updated 2 years ago
- Software signing just got easier☆15Updated 11 months ago
- 🧪 Correlate Semgrep scans with Python test coverage to prioritize SAST findings and get bug fix suggestions via a self-hosted LLM.☆33Updated last month
- Publishes BOMs to Dependency-Track from GitHub Actions☆47Updated last month