aquasecurity / tracee-actionLinks
Protect GitHub Actions with Tracee
☆81Updated 3 months ago
Alternatives and similar repositories for tracee-action
Users that are interested in tracee-action are comparing it to the libraries listed below
Sorting:
- ☆52Updated last week
- Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded☆67Updated last month
- ☆56Updated 2 years ago
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆192Updated this week
- A tool to create, transform and attest VEX metadata☆137Updated last week
- Docker Desktop Extension for Trivy☆24Updated last month
- Format agnostic SBOM tooling☆106Updated this week
- Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…☆97Updated last week
- Simple tool that allows you to detect imposter commits in GitHub Actions workflows.☆23Updated 5 months ago
- ☆42Updated 7 months ago
- Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supp…☆132Updated this week
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- A collection of reusable Github Actions workflows.☆132Updated this week
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆85Updated this week
- OpenVEX Specification☆150Updated 2 months ago
- Security configuration checks for popular cloud native applications and infrastructure.☆118Updated 3 years ago
- Administrative tooling for Falco☆105Updated this week
- ☆236Updated last week
- Runtime Security Solution for your CI/CD Pipeline☆104Updated 2 months ago
- sigstore the hard way!☆111Updated last year
- ☆74Updated 2 weeks ago
- silence negligible CVE alerts using LLM☆42Updated 3 weeks ago
- Proof-of-concept SLSA provenance generator for GitHub Actions☆99Updated 2 years ago
- Stuff to make standing up sigstore (esp. for testing) easier for e2e/integration testing.☆64Updated this week
- An SBOM query language and associated utilities☆54Updated last year
- ☆54Updated 2 weeks ago
- GitHub Issue + Trivy Action☆55Updated 2 years ago
- Kubernetes audit logging, when you don't control the control plane☆79Updated 2 weeks ago
- Trivy's misconfiguration scanning engine☆218Updated 4 months ago
- A replacement for "kubectl exec" that works over WebSocket connections.☆38Updated last year