Alternatives and similar repositories for tracee-action

Users that are interested in tracee-action are comparing it to the libraries listed below

• octo-sts / app
  A GitHub App that acts like a Security Token Service (STS) for the Github API
  ☆220Updated this week
• github / audit-actions-workflow-runs
  Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded
  ☆75Updated last week
• openvex / vexctl
  A tool to create, transform and attest VEX metadata
  ☆153Updated this week
• aquasecurity / trivy-checks
  ☆56Updated this week
• CycodeLabs / cimon-action
  Runtime Security Solution for your CI/CD Pipeline
  ☆109Updated 2 months ago
• octo-sts / action
  ☆46Updated last week
• slsa-framework / slsa-github-generator-go
  ☆57Updated 3 years ago
• chainguard-dev / vex
  vexctl is a tool to attest VEX impact statements
  ☆45Updated 2 years ago
• chainguard-dev / actions
  A collection of reusable Github Actions workflows.
  ☆141Updated this week
• AkihiroSuda / vexllm
  silence negligible CVE alerts using LLM
  ☆60Updated last week
• bomctl / bomctl
  Format agnostic SBOM tooling
  ☆115Updated 3 weeks ago
• google / containerdbg
  ☆74Updated 3 months ago
• aquasecurity / defsec
  Trivy's misconfiguration scanning engine
  ☆216Updated 7 months ago
• aquasecurity / appshield
  Security configuration checks for popular cloud native applications and infrastructure.
  ☆119Updated 3 years ago
• chainguard-dev / clank
  Simple tool that allows you to detect imposter commits in GitHub Actions workflows.
  ☆23Updated 8 months ago
• falcosecurity / falcoctl
  Administrative tooling for Falco
  ☆110Updated this week
• aquasecurity / trivy-docker-extension
  Docker Desktop Extension for Trivy
  ☆23Updated 2 weeks ago
• mrtc0 / kubectf
  Kubernetes CTF
  ☆43Updated 4 years ago
• sigstore / policy-controller
  Sigstore Policy Controller - an admission controller that can be used to enforce policy on a Kubernetes cluster based on verifiable supp…
  ☆142Updated last week
• RichardoC / kube-audit-rest
  Kubernetes audit logging, when you don't control the control plane
  ☆85Updated this week
• in-toto / archivista
  Archivista is a graph and storage service for in-toto attestations. Archivista enables the discovery and retrieval of attestations for so…
  ☆99Updated last week
• stacklok / sigstore-the-hard-way
  sigstore the hard way!
  ☆117Updated last month
• SBOMit / specification
  ☆65Updated last year
• buildsec / frsca
  ☆245Updated this week
• chainguard-dev / bomshell
  An SBOM query language and associated utilities
  ☆54Updated last year
• controlplaneio / badrobot
  BadRobot - Operator Security Audit Tool
  ☆222Updated 3 weeks ago
• kinvolk / seccompagent
  agent for handling seccomp descriptors for container runtimes
  ☆47Updated last year
• suzuki-shunsuke / tfprovidercheck
  CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…
  ☆87Updated this week
• kubescape / regolibrary
  The regolibrary package contains the controls Kubescape uses for detecting misconfigurations in Kubernetes manifests.
  ☆125Updated this week
• lazy-actions / gitrivy
  GitHub Issue + Trivy Action
  ☆55Updated 2 years ago