aquasecurity / trivy-iacLinks
☆12Updated 4 months ago
Alternatives and similar repositories for trivy-iac
Users that are interested in trivy-iac are comparing it to the libraries listed below
Sorting:
- ☆52Updated this week
- An SBOM query language and associated utilities☆54Updated last year
- Docker Desktop Extension for Trivy☆24Updated last month
- ☆20Updated this week
- ☆23Updated 2 months ago
- vscode extension for tfsec☆30Updated 2 years ago
- Audit your GitHub Actions workflow runs to see exactly which Actions were downloaded☆68Updated last month
- Trivy's misconfiguration scanning engine☆218Updated 4 months ago
- library for adding comments to git PRs☆14Updated 8 months ago
- Static analysis for CloudFormation templates to identify common misconfiguration☆57Updated 3 years ago
- ☆42Updated 7 months ago
- Protect GitHub Actions with Tracee☆81Updated 3 months ago
- Git action to generate security lint report for Kubernetes workload YAML files on PR☆28Updated 3 years ago
- CLI to prevent malicious Terraform Providers from being executed. You can define the allow list of Terraform Providers and their versions…☆86Updated this week
- Security configuration checks for popular cloud native applications and infrastructure.☆118Updated 3 years ago
- Kubernetes Admission Controller for Image Scanning using OPA☆50Updated last year
- GitHub Actions for creating GitHub Issues according to the Trivy scanning result☆25Updated last year
- TFLint ruleset template☆39Updated 3 weeks ago
- A GitHub App that acts like a Security Token Service (STS) for the Github API☆192Updated this week
- A tool to check the security settings of Github Organizations.☆71Updated last year
- tfclean is tool to remove applied moved block, import block, etc☆48Updated 2 weeks ago
- fatbom (Fat Bill Of Materials) is a tool which combines the SBOM generated by various tools into one fat SBOM. Thus leveraging each tool'…☆32Updated 2 years ago
- Common code for hardening benchmarks☆11Updated last year
- Run tfsec with reviewdog on pull requests to enforce security best practices☆75Updated last week
- Slack alert bot for matching Github Audit Events☆10Updated 6 months ago
- vexctl is a tool to attest VEX impact statements☆44Updated 2 years ago
- AWS Cloudtrail event alerting lambda function. Send alerts to Slack, Email, or SNS.☆20Updated 2 years ago
- NamespaceHound is the tool for detecting the risk of potential namespace crossing violations in multi-tenant clusters.☆95Updated 5 months ago
- ☆27Updated 3 weeks ago
- Compare vulnerability scanners results (to make them better!)☆16Updated last month