aquasecurity / trivy-action
Runs Trivy as GitHub action to scan your Docker container image for vulnerabilities
β902Updated last week
Alternatives and similar repositories for trivy-action:
Users that are interested in trivy-action are comparing it to the libraries listed below
- Anchore container analysis and scan provided as a GitHub Actionβ233Updated this week
- A set of GitHub actions for checking your projects for vulnerabilitiesβ542Updated 6 months ago
- 𧡠CLI tool for directly patching container images!β1,212Updated this week
- Kubernetes-native security toolkitβ1,430Updated last week
- Terraform GitHub providerβ957Updated last week
- Find security vulnerabilities, compliance issues, and infrastructure misconfigurations early in the development cycle of your infrastructβ¦β2,244Updated last week
- OpenClarity is an open source tool built to enhance security and observability of cloud native applications and infrastructureβ1,387Updated this week
- A GitHub Action that simplifies using HashiCorp Vaultβ’ secrets as build variables.β460Updated 2 weeks ago
- Harden-Runner is a CI/CD security agent that works like an EDR for GitHub Actions runners. It monitors network egress, file integrity, anβ¦β745Updated last week
- GitHub action for Hadolint, A Dockerfile linting toolβ212Updated last year
- Sets up Terraform CLI in your GitHub Actions workflow.β1,437Updated last week
- Language-agnostic SLSA provenance generation for Github Actionsβ453Updated this week
- Security risk analysis for Kubernetes resourcesβ1,292Updated this week
- Supply-chain Levels for Software Artifactsβ1,621Updated this week
- Official GitHub Action for OpenSSF Scorecard.β287Updated this week
- Regula checks infrastructure as code templates (Terraform, CloudFormation, k8s manifests) for AWS, Azure, Google Cloud, and Kubernetes seβ¦β963Updated 6 months ago
- A GitHub action that installs Terraform linter TFLintβ160Updated this week
- A tool for securing CI/CD workflows with version pinning.β804Updated this week
- Write tests against structured configuration data using the Open Policy Agent Rego query languageβ2,933Updated this week
- A FAST Kubernetes manifests validator, with support for Custom Resources!β2,487Updated last month
- A GitHub action to help you scan your docker image for vulnerabilitiesβ221Updated 2 years ago
- Pike is a tool for determining the permissions or policy required for IAC codeβ676Updated this week
- Read your tfstate or HCL to generate a graph specific for each provider, showing only the resources that are most important/relevant.β1,820Updated 2 months ago
- Update version constraints in your Terraform configurationsβ581Updated 7 months ago
- A GitHub Action for running the ZAP Full scanβ297Updated 4 months ago
- A GitHub Action for running the ZAP Baseline scanβ321Updated 4 months ago
- GitHub Action for Infracost. See cloud cost estimates for Terraform in pull requests. π°π Love your cloud bill!β246Updated last month
- Kubernetes object analysis with recommendations for improved reliability and security. kube-score actively prevents downtime and bugs in β¦β2,864Updated last week
- A Github action for generating Terraform module documentation using terraform-docs and gomplateβ162Updated 6 months ago
- Detect and remediate misconfigurations and security risks across all your GitHub and GitLab assetsβ796Updated last week