anderseknert / kube-reviewLinks
Create Kubernetes AdmissionReview requests from Kubernetes resource manifests
☆160Updated this week
Alternatives and similar repositories for kube-review
Users that are interested in kube-review are comparing it to the libraries listed below
Sorting:
- The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.☆125Updated this week
- KBOM - Kubernetes Bill of Materials☆318Updated last week
- Evaluate the RBAC permissions of Kubernetes identities through policies written in Rego☆346Updated 4 months ago
- Catalogue all images of a Kubernetes cluster to multiple targets with Syft☆203Updated this week
- Response Engine for managing threats in your Kubernetes☆168Updated this week
- BadRobot - Operator Security Audit Tool☆221Updated 2 weeks ago
- This repository offers a comprehensive library of security policies designed to enhance the security of Kubernetes cluster configurations…☆174Updated last year
- Runtime security plug to protect user containers☆65Updated 3 weeks ago
- Kubernetes RBAC static analysis & visualisation tool☆722Updated last week
- An admission controller service and kubectl plugin to handle container drift in K8s clusters☆124Updated 3 years ago
- Notice: Postee is no longer under active development or maintenance.☆211Updated 2 months ago
- Supporting code and demos for KubeCon EU 2023 talk "Malicious Compliance: Reflections on Trusting Container Image Scanners"☆67Updated last year
- A standalone exporter for vulnerability reports and other CRs created by Trivy Operator (formerly Starboard).☆63Updated this week
- A kubectl plugin to visualize network policies rules.☆96Updated last year
- Generate a variety of suspect actions that are detected by Falco rulesets☆106Updated 2 months ago
- Runtime detection and response for malicious events in Kubernetes workloads☆46Updated last year
- A Kubectl plugin that can detect if any of your workloads or manifest files are mounting the docker.sock volume☆179Updated last year
- Prometheus Metrics Exporter for Falco output events☆122Updated 3 months ago
- Process documentation, non-code deliverables, and miscellaneous artifacts of Kubernetes SIG Security☆212Updated last week
- A replacement for "kubectl exec" that works over WebSocket connections.☆40Updated last year
- Falco plugins registry☆102Updated this week
- Artifact Ratification Framework (CNCF Sandbox)☆270Updated this week
- Kubernetes Pod Security Standards implementation - https://github.com/kubernetes/enhancements/blob/master/keps/sig-auth/2579-psp-replacem…☆101Updated last week
- Security configuration checks for popular cloud native applications and infrastructure.☆119Updated 3 years ago
- Rego policies collection☆167Updated this week
- 🔮 ✈️ to integrate OPA Gatekeeper's new ExternalData feature with cosign to determine whether the images are valid by verifying their sig…☆78Updated last year
- K8s-shredder - an opinionated way of parking in Kubernetes☆82Updated this week
- Kubernetes audit logging, when you don't control the control plane☆83Updated this week
- A policy management tool for interacting with Gatekeeper☆389Updated last week
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆107Updated 7 months ago