aquasecurity / trivy-checks
☆38Updated this week
Related projects ⓘ
Alternatives and complementary repositories for trivy-checks
- Protect GitHub Actions with Tracee☆78Updated 11 months ago
- Proof-of-concept SLSA provenance generator for GitHub Actions☆99Updated 2 years ago
- An SBOM query language and associated utilities☆54Updated 9 months ago
- ☆30Updated last week
- A collection of reusable Github Actions workflows.☆118Updated 2 weeks ago
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆136Updated this week
- A tool to create, transform and attest VEX metadata☆116Updated this week
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆75Updated this week
- Simple tool that allows you to detect imposter commits in GitHub Actions workflows.☆22Updated this week
- Rego policies for enterprise-scale Compliance-as-Code with OPA Conftest.☆58Updated last year
- vexctl is a tool to attest VEX impact statements☆44Updated last year
- Kubernetes audit logging, when you don't control the control plane☆65Updated this week
- Run tfsec with reviewdog on pull requests to enforce security best practices☆72Updated this week
- Sysdig Terraform provider. Allow to handle Sysdig Secure policies as code.☆49Updated this week
- Security configuration checks for popular cloud native applications and infrastructure.☆118Updated 2 years ago
- A VS Code Extension for Trivy☆116Updated last year
- Kubernetes Admission Controller for Image Scanning using OPA☆50Updated last year
- TFLint ruleset template☆33Updated last week
- Add comments to pull requests where tfsec checks have failed☆164Updated last year
- Sets up Open Policy Agent CLI in your GitHub Actions workflow.☆45Updated 7 months ago
- Trivy kubernetes library☆29Updated this week
- Dynamic GitHub Actions from Wolfi packages☆41Updated 5 months ago
- This repo. is archived. The utility is now at: https://github.com/CycloneDX/sbom-utility☆61Updated last year
- ☆56Updated 2 years ago
- Trivy's misconfiguration scanning engine☆214Updated 6 months ago
- Template Go app repo with local test/lint/build/vulnerability check workflow, and on tag image test/build/release pipelines, with ko gene…☆92Updated 6 months ago
- GitHub Issue + Trivy Action☆54Updated last year
- 🔍 Rekor transparency log monitoring and alerting☆27Updated last year
- Anchore Kubernetes Inventory can poll Kubernetes Cluster API(s) to tell Anchore Enterprise which Containers and Images are currently in-u…☆63Updated this week
- Runtime security plug to protect user containers☆65Updated this week