aquasecurity / trivy-actionLinks
Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
☆966Updated 2 weeks ago
Alternatives and similar repositories for trivy-action
Users that are interested in trivy-action are comparing it to the libraries listed below
Sorting:
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastruct…☆2,304Updated this week
- A set of GitHub actions for checking your projects for vulnerabilities☆558Updated 8 months ago
- Anchore container analysis and scan provided as a GitHub Action☆244Updated this week
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, an…☆830Updated this week
- Kubernetes-native security toolkit☆1,514Updated last week
- Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes se…☆965Updated 8 months ago
- Security risk analysis for Kubernetes resources☆1,332Updated 2 weeks ago
- A GitHub Action for running the ZAP Full scan☆306Updated 2 weeks ago
- GitHub Action to extract metadata (tags, labels) from Git reference and GitHub events for Docker☆996Updated this week
- 🧵 CLI tool for directly patching container images!☆1,313Updated this week
- Terraform GitHub provider☆989Updated last month
- Pike is a tool for determining the permissions or policy required for IAC code☆720Updated this week
- A curated list of awesome self-hosted GitHub Action runners in a large comparison matrix☆800Updated 3 months ago
- Sets up Terraform CLI in your GitHub Actions workflow.☆1,472Updated last week
- A GitHub action to help you scan your docker image for vulnerabilities☆221Updated 2 years ago
- A GitHub Action that simplifies using HashiCorp Vault™ secrets as build variables.☆465Updated 2 weeks ago
- OpenClarity is an open source platform built to enhance security and observability of cloud native applications and infrastructure☆1,409Updated last week
- Read your tfstate or HCL to generate a graph specific for each provider, showing only the resources that are most important/relevant.☆1,854Updated 4 months ago
- Public Chainguard Images☆600Updated this week
- Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in …☆2,900Updated 2 weeks ago
- Superseded by https://github.com/aquasecurity/trivy-operator☆1,366Updated last month
- Language-agnostic SLSA provenance generation for Github Actions☆472Updated 2 weeks ago
- A GitHub Action for running the ZAP Baseline scan☆326Updated 2 weeks ago
- Tfsec is now part of Trivy☆6,825Updated last month
- Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.☆4,940Updated 3 weeks ago
- Update version constraints in your Terraform / OpenTofu configurations☆595Updated 3 weeks ago
- Write tests against structured configuration data using the Open Policy Agent Rego query language☆2,988Updated this week
- Supply-chain Levels for Software Artifacts☆1,667Updated last week
- GitHub action for Hadolint, A Dockerfile linting tool☆222Updated last year
- A VS Code Extension for Trivy☆137Updated this week