MustacheCase / zanadir
zanadir is an open-source CLI tool that analyzes GitHub repositories and suggests open-source tools to enhance CI/CD best practices.
☆139Updated last week
Alternatives and similar repositories for zanadir:
Users that are interested in zanadir are comparing it to the libraries listed below
- Spectral Security Integration into your Github Actions pipeline☆14Updated last year
- Monitor your code for exposed API keys, tokens, credentials, and high-risk security IaC misconfigurations☆18Updated last year
- preflight helps you verify scripts and executables to mitigate chain of supply attacks such as the recent Codecov hack.☆153Updated 2 years ago
- A catalog of SaaS APIs and their security levels, compliance, and regulation like GDPR, ISO27001, PCI and others☆128Updated 3 years ago
- ☆19Updated 2 years ago
- Terraform provider for Prisma Cloud Compute☆25Updated 3 weeks ago
- Friends don't let friends leak secrets on their terminal window☆104Updated 3 years ago
- Allows you to manage configuration and secrets from multiple provider while masking the secrets at the deployment☆72Updated 2 years ago
- An open-source tool for auditing your software supply chain stack for security compliance based on a new CIS Software Supply Chain benchm…☆746Updated 4 months ago
- A CLI that creates a skeleton Golang project☆16Updated 3 weeks ago
- The home of Developer docs for Prisma by Palo Alto Networks☆21Updated 2 years ago
- Powerpipe: Dashboards for DevOps. Visualize cloud configurations. Assess security posture against a massive library of benchmarks. Build …☆378Updated this week
- Take control of you SCM security posture enforcing policy as code☆13Updated 3 months ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assets☆801Updated 3 weeks ago
- A standard API specification for exchanging supply chain artifacts and intelligence☆78Updated last week
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆85Updated this week
- A curated list of policy-as-code resources like blogs, videos, and tools to practice on for learning Policy-as-Code.☆188Updated last year
- A scanner for end-of-life (EOL) software and dependencies in container images, filesystems, and SBOMs☆388Updated last week
- ☆235Updated last week
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆187Updated this week
- Too many secrets (2MS) helps people protect their secrets on any file or on systems like CMS, chats and git☆91Updated this week
- ☆14Updated 9 months ago
- A curated list of awesome Platform Engineering tools, practices and resources.☆68Updated 7 months ago
- Open source compliance tool for development platforms.☆286Updated last year
- kntrl is an eBPF based runtime agent that monitors and prevents anomalous behaviour defined by you on your pipeline. kntrl achieves this …☆108Updated last week
- GitHub Advanced Security Policy as Code☆82Updated last week
- A collection of tools to improve your containerized apps security posture☆142Updated 11 months ago
- Enrich SBOMs with data from third party services☆168Updated 3 weeks ago
- Runtime Security Solution for your CI/CD Pipeline☆101Updated last month
- GitHub Action to enable automated security updates and open a issue/PR in repos in an org that have dependency files but no dependabot.ya…☆199Updated last week